Exagrid - Backup Appliance Firmware CVE

Filtered by vendor Exagrid Subscribe

Filtered by product Backup Appliance Firmware

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-12310	1 Exagrid	2 Backup Appliance, Backup Appliance Firmware	2023-12-10	5.0 MEDIUM	9.8 CRITICAL
ExaGrid appliances with firmware version v4.8.1.1044.P50 have a /monitor/data/Upgrade/ directory traversal vulnerability, which allows remote attackers to view and retrieve verbose logging information. Files within this directory were observed to contain sensitive run-time information, including Base64 encoded 'support' credentials, leading to administrative access of the device.

Vulnerabilities (CVE)