RSS   Vulnerabilities for 'Backup appliance firmware'   RSS

2019-06-03
 
CVE-2019-12310

CWE-22
 

 
ExaGrid appliances with firmware version v4.8.1.1044.P50 have a /monitor/data/Upgrade/ directory traversal vulnerability, which allows remote attackers to view and retrieve verbose logging information. Files within this directory were observed to contain sensitive run-time information, including Base64 encoded 'support' credentials, leading to administrative access of the device.

 

 >>> Vendor: Exagrid 9 Products
Ex40000e firmware
Ex32000e firmware
Ex10000e firmware
Ex7000 firmware
Ex13000e firmware
Ex3000 firmware
Ex5000 firmware
Ex21000e firmware
Backup appliance firmware


Copyright 2024, cxsecurity.com

 

Back to Top