NVD

Id
28190  
Name
CVE-2015-7709  
Description
The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-10-05  
Modified Date
2015-10-06  
Seq
2015-7709  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
148230 28190 CVE-2015-7709 http://www.rapid7.com/db/modules/exploit/multi/misc/arkeia_agent_exec  View
148231 28190 CVE-2015-7709 https://packetstormsecurity.com/files/132660/Western-Digital-Arkeia-11.0.13-Remote-Code-Execution.html  View
148232 28190 CVE-2015-7709 37600  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
9769 JVNDB-2015-005089 Western Digital Arkeia の Arkeia Backup Agent の arkeiad デーモンにおける認証を回避される脆弱性 Western Digital Arkeia の Arkeia Backup Agent の arkeiad デーモンには、認証を回避され、任意のコマンドを実行される脆弱性が存在します。 CVE-2015-7709 84934 CVE-2015-7709 28190 10 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005089.html 2015-07-10 2015-10-07 View