CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41998

Arcserve UDP prior to 9.2 contained a vulnerability in the com.ca.arcflash.rps.webservice.RPSService4CPMImpl interface. A routine exists that allows an attacker to upload and execute arbitrary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.153

EPSS Ranking 94.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.tenable.com/security/research/tra-2023-37
https://www.tenable.com/security/research/tra-2023-37

Products affected by CVE-2023-41998

Arcserve » Udp » Version: N/A

cpe:2.3:a:arcserve:udp:-
Arcserve » Udp » Version: 5.0

cpe:2.3:a:arcserve:udp:5.0
Arcserve » Udp » Version: 6.0

cpe:2.3:a:arcserve:udp:6.0
Arcserve » Udp » Version: 6.5

cpe:2.3:a:arcserve:udp:6.5
Arcserve » Udp » Version: 7.0

cpe:2.3:a:arcserve:udp:7.0
Arcserve » Udp » Version: 9.0.6034

cpe:2.3:a:arcserve:udp:9.0.6034

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41998

Products

Pricing

Contact Us