EMC Avamar 6.0

CPE Details

EMC Avamar 6.0
emc
avamar
6.0
2011-09-19
10h15 +00:00
2012-11-01
01h04 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:emc:avamar:6.0:*:*:*:*:*:*:*

Informations

Vendor

emc

Product

avamar

Version

6.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2016-0906 2016-07-06 12h00 +00:00 The web-restore interface in Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar through 7.1.2 and 7.2.x through 7.2.1 allows remote authenticated users to read or delete directories via a Linux backup-restore operation.
8.8
Haute
CVE-2013-0944 2013-05-03 10h00 +00:00 The web-based file-restore interface in EMC Avamar Server before 6.1.0 allows remote authenticated users to read arbitrary files via a crafted URL.
3.5
CVE-2013-0945 2013-05-03 10h00 +00:00 EMC Avamar Client before 6.1.101-89 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
9.3
CVE-2012-2291 2013-01-21 21h00 +00:00 EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to gain privileges via an unspecified symlink attack.
7.2
CVE-2011-1740 2011-09-17 08h00 +00:00 EMC Avamar 4.x, 5.0.x, and 6.0.x before 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a different domain.
7.7