Backup & Replication Director Security Vulnerabilities and Issues — Backup & Replication Director CVE List

Lucene search

NakivoBackup & Replication Director

3 matches found

CVE•added 2025/03/04 8:15 a.m.•154 views

CVE-2024-48248

NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials).

8.6CVSS9AI score0.94093EPSS

CVE•added 2025/04/08 3:15 p.m.•50 views

CVE-2025-32406

An XXE issue in the Director NBR component in NAKIVO Backup & Replication 10.3.x through 11.0.1 before 11.0.2 allows remote attackers fetch and parse the XML response.

8.6CVSS7.3AI score0.00064EPSS

CVE•added 2020/09/24 9:15 p.m.•41 views

CVE-2020-15850

Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. This occurs because the database containing the users of the web application and the password-recovery secret value is r...

7.8CVSS7.5AI score0.00023EPSS