Arcserve Unified Data Protection 9.2 Multiple Vulnerabilities

An authentication bypass vulnerability exists in edge-app-base-webui.
The doLogin() method fetches the correct UUID, so the login would succeed.
An unauthenticated remote attacker can exploit this vulnerability by sending a POST HTTP message without the password parameter to endpoint /management/wizardLogin.
Once authenticated, the attacker can perform UDP Console tasks that require authentication.
This vulnerability is chained by the following vulnerability to perform unauthenticated path traversal file upload. The PoC for this vulnerability is incorporated into the PoC of the following vulnerability.
CVE-2024-0800 - Authenticated Path Traversal File Upload. A path traversal vulnerability exists in edge-app-base-webui.
An authenticated remote attacker can exploit this to upload arbitrary files to any directory on the file system where the UDP Console is installed.
Python3 arcserve udp console wizardLogin auth bypass.
Uploading local file /tmp/malicious file to WindowsSystem32existing exe to be replaced.
When logging in to the Arcserve UDP Console with the validateUserByUser API call, the login username is processed by code in ASNative.
Text:000000018000921C add r14, 2.text:0000000180009220 cmp r15, rbp.
Text:0000000180009238 lea rcx, [rdi+2] ; Size.text:000000018000923C call cs: imp malloc.
Text:0000000180009242 lea r8, [rdi+2] ; Size.text:0000000180009246 xor edx, edx ; Val.text:0000000180009248 mov rcx, rax ; void *.text:000000018000924B mov r13, rax.
Text:000000018000925F copy domain part in domainusername.
Text:000000018000925F call cs:wcsncpy s. If the fully qualified username starts with or /, the value 0 is passed as the second parameter to wcsncpy s().
This will trigger the invalid parameter handler, which by default will terminate the process.


This Cyber News was published on www.tenable.com. Publication date: Wed, 13 Mar 2024 19:30:13 +0000


Cyber News related to Arcserve Unified Data Protection 9.2 Multiple Vulnerabilities

9 Best DDoS Protection Service Providers for 2024 - eSecurity Planet content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. One of the most powerful defenses an organization can employ against distributed ...
11 months ago Esecurityplanet.com
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
1 month ago Aws.amazon.com
Data Protection in Educational Institutions - This article delves into the significance of data protection in educational institutions, emphasizing three key areas: the types of educational data, data privacy regulations, and data protection measures. Lastly, robust data protection measures are ...
10 months ago Securityzap.com
Unified API Protection - A massive segment of organizations' digital footprint today is built around internal and external APIs. As more IT leaders realize and acknowledge the size of APIs' influence, it's become clear that new methods are needed to secure those APIs. While ...
1 year ago Cequence.ai
Building a Sustainable Data Ecosystem - Finally, I outline future research and policy refinement directions, advocating for a collaborative and responsible approach to building a sustainable data ecosystem in generative AI. In recent years, generative AI has emerged as a transformative ...
7 months ago Feeds.dzone.com
What is Azure Identity Protection and 7 Steps to a Seamless Setup - As a result, tools such as Microsoft's Azure Identity Protection have become a staple in protecting against compromised identities, account takeover, and misuse of privileges. Azure Identity Protection is a security service that provides a robust ...
5 months ago Securityboulevard.com
Cybersecurity Compliance: Understanding Regulatory Frameworks - Data breaches continue to increase year over year: there was a 20% increase in data breaches from 2022 to 2023 and globally and there were twice the number of victims in 2023 as compared to 2022. Compliance frameworks vary by industry, region, and ...
6 months ago Offsec.com
CVE-2021-22283 - Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB ...
1 year ago
Securing the Digital Frontier - As we navigate through a world brimming with data, understanding the evolving landscape of data protection is not just a necessity but a responsibility. This intricate dance among technology, societal norms, and regulatory frameworks shapes our ...
9 months ago Feeds.dzone.com
New Microsoft Purview features use AI to help secure and govern all your data - More than 90% of organizations use multiple cloud infrastructures, platforms, and services to run their business, adding complexity to securing all data.1Microsoft Purview can help you secure and govern your entire data estate in this complex and ...
10 months ago Microsoft.com
Data Classification Software Features to Look Out For - For organizations looking to improve their data protection and data compliance strategies, technology is essential. Implementation of the right software can help you gain visibility into your company's data, improving your ability to protect customer ...
10 months ago Securityboulevard.com
Data Privacy and Security - Organizations are gradually becoming concerned regarding data security in several instances, such as collecting and retaining sensitive information and processing personal information in external environments, which include information sharing and ...
11 months ago Feeds.dzone.com
Aim for a modern data security approach - Risk, compliance, governance, and security professionals are finally realizing the importance of subjecting sensitive workloads to robust data governance and protection the moment the data begins traversing the data pipeline. Why current data ...
10 months ago Helpnetsecurity.com
Decoding the data dilemma: Strategies for effective data deletion in the age of AI - Businesses today have a tremendous opportunity to use data in new ways, but they must also look at what data they keep and how they use it to avoid potential legal issues. Forrester predicts a doubling of unstructured data in 2024, driven in part by ...
7 months ago Venturebeat.com
Strategies for Securing Student Data in Cloud Services - This article addresses the strategies that educational organizations can employ to ensure the protection and confidentiality of student data in cloud services. Implementing strong access controls is crucial for ensuring the security of student data ...
10 months ago Securityzap.com
Business Data Privacy Laws: Compliance and Beyond - Governments worldwide have implemented strict data privacy laws to protect individuals' information in the face of increasing cyber threats and data breaches. Let's dive into the world of business data privacy laws as we navigate the complexities of ...
9 months ago Securityzap.com
Data Classification: Your 5 Minute Guide - Data classification has become a vital component of data security governance. With the rise of virtual data networks, organizations must take necessary measures to protect and secure confidential information. Data classification is the process of ...
1 year ago Tripwire.com
Data Loss Prevention for Business: Strategies and Tools - Data Loss Prevention has become crucial in today's data-driven business landscape to protect sensitive information. This discussion aims to provide valuable insights into DLP strategies and tools for business, helping mitigate data loss risks ...
9 months ago Securityzap.com
Unified Endpoint Management: What is it and What's New? - What began as Mobile Device Management has now transitioned through Mobile Application Management and Enterprise Mobility Management to culminate in UEM. This progression underscores the industry's response to the ever-growing challenges of modern IT ...
10 months ago Securityboulevard.com
Cloud Security: Ensuring Data Protection in the Cloud - Data Encryption: Protecting sensitive data is a top priority in cloud security. Cloud security is of utmost importance when it comes to protecting and ensuring the confidentiality of data stored and transmitted in the cloud. Data protection in the ...
9 months ago Securityzap.com
Papua New Guinea Sets High Bar in Data Security - COMMENTARY. In an era where data breaches and cyberattacks are becoming increasingly sophisticated, protecting sensitive data is table stakes. What really sets organizations apart is their ability to place robust protections on data that needs to be ...
4 months ago Darkreading.com
Beyond DLP: Embracing a Multi-Layered Strategy for Personal Data Security - Data, especially personal data, drives the digital world. While digital systems continuously gather and use personal data to enhance user experience, there is a significant issue. The alarming frequency of data breaches indicates that the methods ...
10 months ago Securityboulevard.com
Data De-Identification: Balancing Privacy, Efficacy & Cybersecurity - COMMENTARY. Global data privacy laws were created to address growing consumer concerns about individual privacy. These laws include several best practices for businesses about storing and using consumers' personal data so that the exposure of ...
11 months ago Darkreading.com
When a Data Mesh Doesn't Make Sense - The data mesh is a thoughtful decentralized approach that facilitates the creation of domain-driven, self-service data products. Data mesh-including data mesh governance-requires the right mix of process, tooling, and internal resources to be ...
7 months ago Feeds.dzone.com
Arcserve Unified Data Protection 9.2 Multiple Vulnerabilities - An authentication bypass vulnerability exists in edge-app-base-webui. The doLogin() method fetches the correct UUID, so the login would succeed. An unauthenticated remote attacker can exploit this vulnerability by sending a POST HTTP message without ...
7 months ago Tenable.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)