How severe is CVE-2017-7279?

CVE-2017-7279 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2017-7279

Name: enterprise_backup
Author: unitrends

9.8CRITICAL

An unprivileged user of the Unitrends Enterprise Backup before 9.0.0 web server can escalate to root privileges by modifying the "token" cookie issued at login.

发布于: 4/12/2017更新于: 4/20/2025

描述

An unprivileged user of the Unitrends Enterprise Backup before 9.0.0 web server can escalate to root privileges by modifying the "token" cookie issued at login.

AI分析AI驱动

受影响产品

unitrendsenterprise_backup

参考资料

https://rhinosecuritylabs.com/research/remote-code-execution-bug-hunting-chapter-1/
Third Party Advisory
https://rhinosecuritylabs.com/research/remote-code-execution-bug-hunting-chapter-1/
Third Party Advisory