CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-7709

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0210%
EPSS Percentile16.82th
Published2015年10月5日
Last Modified2026年5月6日

Vulnerability Description

The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.

Affected Platforms (CPE)

📦
Arkeia

Western Digital Arkeia

<= 11.0.12

References & Advisories

🔗 http://www.rapid7.com/db/modules/exploit/multi/misc/arkeia_agent_exec
🔗 https://packetstormsecurity.com/files/132660/Western-Digital-Arkeia-11.0.13-Remote-Code-Execution.html
🔗 https://www.exploit-db.com/exploits/37600/
🔗 http://www.rapid7.com/db/modules/exploit/multi/misc/arkeia_agent_exec
🔗 https://packetstormsecurity.com/files/132660/Western-Digital-Arkeia-11.0.13-Remote-Code-Execution.html
🔗 https://www.exploit-db.com/exploits/37600/

相關漏洞威脅

CVE-2015-033310.0

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux ...

CVE-2015-034110.0

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X a...

CVE-2015-304810.0

Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to ex...

CVE-2015-033510.0

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux ...