How severe is CVE-2017-7279?

CVE-2017-7279 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2017-7279

Name: enterprise_backup
Author: unitrends

9.8CRITICAL

An unprivileged user of the Unitrends Enterprise Backup before 9.0.0 web server can escalate to root privileges by modifying the "token" cookie issued at login.

Опубликовано: 4/12/2017Обновлено: 4/20/2025

Описание

An unprivileged user of the Unitrends Enterprise Backup before 9.0.0 web server can escalate to root privileges by modifying the "token" cookie issued at login.

ИИ-АнализНа базе ИИ

Затронутые продукты

unitrendsenterprise_backup

Ссылки

https://rhinosecuritylabs.com/research/remote-code-execution-bug-hunting-chapter-1/
Third Party Advisory
https://rhinosecuritylabs.com/research/remote-code-execution-bug-hunting-chapter-1/
Third Party Advisory