CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2020-15851

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1920%
EPSS Percentile18.72th
Published2020年9月24日
Last Modified2024年11月21日

Vulnerability Description

Lack of access control in Nakivo Backup & Replication Transporter version 9.4.0.r43656 allows remote users to access unencrypted backup repositories and the Nakivo Controller configuration via a network accessible transporter service. It is also possible to create or delete backup repositories.

Affected Platforms (CPE)

📦
Nakivo

Backup \& Replication Transporter

= 9.4.0.r43656

References & Advisories

🔗 https://helpcenter.nakivo.com/display/RN/v10.3+Release+Notes
🔗 https://labs.f-secure.com/advisories/nakivo-backup-and-replication-multiple-vulnerabilities
🔗 https://helpcenter.nakivo.com/display/RN/v10.3+Release+Notes
🔗 https://labs.f-secure.com/advisories/nakivo-backup-and-replication-multiple-vulnerabilities

相關漏洞威脅

CVE-2020-161410.0

A Use of Hard-coded Credentials vulnerability exists in the NFX250 Series for the vSRX Virtual Network Function (VNF) instance, wh...

CVE-2020-696210.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...

CVE-2020-696610.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...

CVE-2020-696110.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...