What is CVE-2023-26258?

CVE-2023-26258 is a vulnerability in N/a. Published 2023-07-03.

Is CVE-2023-26258 known to be exploited?

11 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2023-26258

Arcserve UDP through 9.0.6034 allows authentication bypass. The method getVersionInfo at WebServiceImpl/services/FlashServiceImpl leaks the AuthUUID token. This token can be used at /WebServiceImpl/services/VirtualStandbyServiceImpl to obt…

EPSS: 0.808 (99.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

mdsecactivebreach/CVE-2023-26258-ArcServe
Imahian/CVE-2023-26258
Jalexander798/JA_
P3gEcTH8uJiYFVKb7lIn/awesome-list
bachkhoasoft/awesome-list-ks
0xor0ne/awesome-list
izj007/wechat
kolaarionvull/awesome-list
nomi-sec/PoC-in-GitHub
whoami13apt/files2

References

www.arcserve.com/products/arcserve-udp
www.mdsec.co.uk/2023/06/cve-2023-26258-remote-code-execution-in-arcserve-udp-ba…
support.arcserve.com/s/article/KB000015720

Frequently asked questions

What is CVE-2023-26258?: CVE-2023-26258 is a vulnerability in N/a. Published 2023-07-03.
Is CVE-2023-26258 known to be exploited?: 11 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.