Arcserve Udp
Approved changes feed: RSS · Atom
cpe:2.3:a:arcserve:arcserve_udp:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Arcserve (03ade57b-9a55-5a9e-a8ac-608e7b353ed2) |
|---|---|
| Product | Arcserve Udp (ccdf46bc-1d4b-5800-81f2-b3a26b243e6c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-42000 |
vulnerable | 2026-06-08 06:11:07.636514 |
Arcserve UDP Agent Unauthenticated Path Traversal File Upload
CRITICAL (9.8)
Arcserve UDP prior to 9.2 contains a path traversal vulnerability in com.ca.arcflash.ui.server.servlet.FileHandlingServlet.doUpload(). An unauthenticated remote attacker can exploit it to upload arbitrary files to any location on the file system where the UDP agent is installed.
Published: 2023-11-27T16:55:39.466Z
Updated: 2024-08-02T19:16:49.527Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-41999 |
vulnerable | 2026-06-08 06:11:07.635834 |
Arcserve UDP Management Authentication Bypass
CRITICAL (9.8)
An authentication bypass exists in Arcserve UDP prior to version 9.2. An unauthenticated, remote attacker can obtain a valid authentication identifier that allows them to authenticate to the management console and perform tasks that require authentication.
Published: 2023-11-27T16:54:15.422Z
Updated: 2024-08-02T19:16:49.522Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-41998 |
vulnerable | 2026-06-08 06:11:07.634492 |
Arcserve UDP Unauthenticated RCE
CRITICAL (9.8)
Arcserve UDP prior to 9.2 contained a vulnerability in the com.ca.arcflash.rps.webservice.RPSService4CPMImpl interface. A routine exists that allows an attacker to upload and execute arbitrary files.
Published: 2023-11-27T16:50:48.279Z
Updated: 2024-08-02T19:16:49.339Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.