| Max CVSS | 10.0 | Min CVSS | 7.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-12478 | 10.0 |
It was discovered that the api/storage web interface in Unitrends Backup (UB) before 10.0.0 has an issue in which one of its input parameters was not validated. A remote attacker could use this flaw to bypass authentication and execute arbitrary comm
|
16-12-2021 - 18:48 | 07-08-2017 - 15:29 | |
| CVE-2018-6328 | 7.5 |
It was discovered that the Unitrends Backup (UB) before 10.1.0 user interface was exposed to an authentication bypass, which then could allow an unauthenticated user to inject arbitrary commands into its /api/hosts parameters using backquotes.
|
06-12-2021 - 15:03 | 14-03-2018 - 19:29 |