Vulnerabilities > Arcserve
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-11-27 | CVE-2023-41998 | Unrestricted Upload of File with Dangerous Type vulnerability in Arcserve UDP Arcserve UDP prior to 9.2 contained a vulnerability in the com.ca.arcflash.rps.webservice.RPSService4CPMImpl interface. | 9.8 |
2023-11-27 | CVE-2023-41999 | Improper Authentication vulnerability in Arcserve UDP An authentication bypass exists in Arcserve UDP prior to version 9.2. | 9.8 |
2023-11-27 | CVE-2023-42000 | Path Traversal vulnerability in Arcserve UDP Arcserve UDP prior to 9.2 contains a path traversal vulnerability in com.ca.arcflash.ui.server.servlet.FileHandlingServlet.doUpload(). | 9.8 |
2023-07-03 | CVE-2023-26258 | Incorrect Authorization vulnerability in Arcserve UDP Arcserve UDP through 9.0.6034 allows authentication bypass. | 9.8 |
2021-01-20 | CVE-2020-27858 | XXE vulnerability in Arcserve D2D 16.5 This vulnerability allows remote attackers to disclose sensitive information on affected installations of CA Arcserve D2D 16.5. | 7.5 |
2018-10-26 | CVE-2018-18660 | Cross-site Scripting vulnerability in Arcserve UDP 5.0/6.0/6.5 An issue was discovered in Arcserve Unified Data Protection (UDP) through 6.5 Update 4. | 6.1 |
2018-10-26 | CVE-2018-18659 | XXE vulnerability in Arcserve UDP 6.0/6.5 An issue was discovered in Arcserve Unified Data Protection (UDP) through 6.5 Update 4. | 7.5 |
2018-10-26 | CVE-2018-18658 | Information Exposure vulnerability in Arcserve UDP 6.0/6.5 An issue was discovered in Arcserve Unified Data Protection (UDP) through 6.5 Update 4. | 7.5 |
2018-10-26 | CVE-2018-18657 | Information Exposure vulnerability in Arcserve UDP 6.0/6.5 An issue was discovered in Arcserve Unified Data Protection (UDP) through 6.5 Update 4. | 7.5 |
2015-05-29 | CVE-2015-4068 | Path Traversal vulnerability in Arcserve UDP 5.0 Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet. | 9.1 |