Wbsairback White Bear Solutions

16 CVEs affecting Wbsairback White Bear Solutions. Latest disclosed: 2024-05-14. Critical: 1, High: 2.

Top CVEs affecting Wbsairback White Bear Solutions
CVESeverityScorePublishedSummary
CVE-2024-3781Critical9.12024-04-15Command injection vulnerability in the operating system. Improper neutralisation of special elements in Active Directory integration allows the intended comman…
CVE-2024-3782High8.82024-04-15Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions…
CVE-2024-3783High7.72024-04-15The Backup Agents section in WBSAirback 21.02.04 is affected by a Path Traversal vulnerability, allowing a user with low privileges to download files from the…
CVE-2024-3788Medium6.62024-05-14Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through License (/admin/CDPUsers). Exploitation of…
CVE-2024-3787Medium6.62024-05-14Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 disks (/admin/DeviceS3). Exploitation of…
CVE-2024-3786Medium6.62024-04-15Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through Device Synchronizations (/admin/DeviceRepli…
CVE-2024-3785Medium6.62024-04-15Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through Device NAS shared section (/admin/DeviceNAS…
CVE-2024-3784Medium6.62024-04-15Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 Accounts (/admin/CloudAccounts). Exploit…
CVE-2024-3789Medium6.52024-05-14Uncontrolled resource consumption vulnerability in White Bear Solutions WBSAirback, version 21.02.04. This vulnerability could allow an attacker to send multip…
CVE-2024-3796Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupSchedule, description field. Exploitation of t…
CVE-2024-3795Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupTemplate, name / description fields. Exploitat…
CVE-2024-3794Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/AdvancedSystem, description field, all parameters. E…
CVE-2024-3793Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/CloudAccounts, account name / user password / server…
CVE-2024-3792Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/DeviceReplication, execution range field, all parame…
CVE-2024-3791Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemConfiguration, name / free memory limit fields…
CVE-2024-3790Medium4.82024-05-14Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemUsers, login / description fields, passwd1/ pa…