The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CArkeia Western Digital Arkeia
APPArkeia≤ 11.0.12
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje
Powiązane podatności
CVE-2005-0496CRITICAL9.8ten sam vendor
Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which ...
CVE-2001-0967CRITICAL9.8ten sam vendor
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the ...