HIGH🇬🇧 English

CVE-2015-7709

CVSS 10.0v2.0pub. 2015-10-05upd. 2026-05-06

The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Arkeia Western Digital Arkeia

    APP
    Arkeia
    ≤ 11.0.12
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2005-0496CRITICAL9.8ten sam vendor

Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which ...

CVE-2001-0967CRITICAL9.8ten sam vendor

Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the ...

CVE-2015-7709 — HIGH 10.0 | CVEbaza.pl