CVE-2024-0800

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Mar 13, 2024
Updated: Mar 14, 2024
CWE ID 434

Summary

CVE-2024-0800 is a path traversal vulnerability that affects Arcserve Unified Data Protection versions 9.2 and 8.1. Specifically, the vulnerability exists in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.servlet.ImportNodeServlet component. The risk score for this vulnerability is 79, indicating a high level of severity. The base severity score is also rated as high, with a score of 8.8. The privileges required to exploit this vulnerability are low, and no user interaction is necessary. The attack vector is through the network, with potential impacts on integrity and confidentiality being high. To remediate this vulnerability, it is recommended to update Arcserve Unified Data Protection to a patched version that addresses the issue. Failure to address this vulnerability can pose significant dangers to an organization's data security and confidentiality.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0800 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options