CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Exagrid: >> Backup Appliance Firmware Security Vulnerabilities

CVE-2019-12310

ExaGrid appliances with firmware version v4.8.1.1044.P50 have a /monitor/data/Upgrade/ directory traversal vulnerability, which allows remote attackers to view and retrieve verbose logging information. Files within this directory were observed to contain sensitive run-time information, including Base64 encoded 'support' credentials, leading to administrative access of the device.

CVSS Score

9.8

EPSS Score

0.005

Published

2019-06-03

Page 1

Vulnerabilities

Vulnerable Software

Exagrid: >> Backup Appliance Firmware Security Vulnerabilities

Products

Pricing

Contact Us