Vulnerabilities > Unitrends > Backup > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-03-14 CVE-2018-6329 SQL Injection vulnerability in Unitrends Backup 9.1
It was discovered that the Unitrends Backup (UB) before 10.1.0 libbpext.so authentication could be bypassed with a SQL injection, allowing a remote attacker to place a privilege escalation exploit on the target system and subsequently execute arbitrary commands.
network
low complexity
unitrends CWE-89
critical
10.0