Vulnerabilities > Arkeia

DATE CVE VULNERABILITY TITLE RISK
2015-10-05 CVE-2015-7709 Permissions, Privileges, and Access Controls vulnerability in Arkeia Western Digital Arkeia
The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.
network
low complexity
arkeia CWE-264
critical
10.0
2005-02-21 CVE-2005-0496 Use of Hard-coded Credentials vulnerability in Arkeia Network Backup 5.0
Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands.
network
low complexity
arkeia CWE-798
critical
9.8
2001-08-31 CVE-2001-0967 Use of Password Hash With Insufficient Computational Effort vulnerability in Arkeia 4.2/4.2.82
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.
network
low complexity
arkeia CWE-916
critical
9.8