Vulnerabilities > Nakivo > Backup Replication Director > 9.4.0.r43656

DATE CVE VULNERABILITY TITLE RISK
2025-03-04 CVE-2024-48248 Unspecified vulnerability in Nakivo Backup & Replication Director 9.4.0.R43656
NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials).
network
low complexity
nakivo
8.6
8.6
2020-09-24 CVE-2020-15850 Incorrect Default Permissions vulnerability in Nakivo Backup & Replication Director 9.4.0.R43656
Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges.
local
low complexity
nakivo CWE-276
7.8
7.8