Path Traversal in Quest Netvault Backup

CVE-2018-1162

This vulnerability allows remote attackers to create a denial-of-service condition on vulnerable installations of Quest NetVault Backup 11.2.0.13. Although authentication is required to exploit this vulnerability, the existing authenticati…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.052 (91.4th percentile) — read the EPSS interpretation.

Affected products

Quest Netvault Backup — versions 11.2.0.13

Weakness classification (CWE)

CWE-22 — Path Traversal

References

zerodayinitiative.com/advisories/ZDI-18-005 (x_refsource_MISC)