Zmanda Amanda 3.3.1

CPE Details

Zmanda Amanda 3.3.1
zmanda
amanda
3.3.1
2019-06-10
14h09 +00:00
2019-06-10
14h09 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:zmanda:amanda:3.3.1:*:*:*:*:*:*:*

Informations

Vendor

zmanda

Product

amanda

Version

3.3.1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-30577 2023-07-25 22h00 +00:00 AMANDA (Advanced Maryland Automatic Network Disk Archiver) before tag-community-3.5.4 mishandles argument checking for runtar.c, a different vulnerability than CVE-2022-37705.
7.8
Haute
CVE-2016-10729 2018-10-24 19h00 +00:00 An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied after --create, allowing users to manipulate commands and perform command injection as root.
7.8
Haute
CVE-2016-10730 2018-10-24 19h00 +00:00 An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. Amstar is an Amanda Application API script. It should not be run by users directly. It uses star to backup and restore data. It runs binaries with root permissions when parsing the command line argument --star-path.
7.8
Haute