WEB Arcserve Unified Data Protection ImportNodeServlet doPost Directory Traversal (CVE-2024-0800)
Rule ID
1234716
Severity
Critical
Description
A directory traversal vulnerability exists in Arcserve Unified Data Protection (UDP). The vulnerability is due to improper validation of upload files in ImportNodeServlet.
Impact
Remote code execution
Recommendation
Update vendor's patch.
IPS Category
Web threats
IPS Anomaly Group
N/A
IPS Rule Default Action
Deny
References
Keywords
N/A
Date Created
2024/04/01
Last Updated