Описание
CloudBerry Backup v6.1.2.34 allows local privilege escalation via a Pre or Post backup action. With only user-level access, a user can modify the backup plan and add a Pre backup action script that executes on behalf of NT AUTHORITY\SYSTEM.
Ссылки
- ExploitMitigationThird Party Advisory
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.1.2.34 (включая)
cpe:2.3:a:cloudberrylab:backup:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00031
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-269
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
CloudBerry Backup v6.1.2.34 allows local privilege escalation via a Pre or Post backup action. With only user-level access, a user can modify the backup plan and add a Pre backup action script that executes on behalf of NT AUTHORITY\SYSTEM.
EPSS
Процентиль: 8%
0.00031
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-269