Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Haystacksoftware Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-36617 1 Haystacksoftware 1 Arq Backup 2022-09-14 N/A 4.9 MEDIUM
Arq Backup 7.19.5.0 and below stores backup encryption passwords using reversible encryption. This issue allows attackers with administrative privileges to recover cleartext passwords.
CVE-2017-16945 2 Apple, Haystacksoftware 2 Macos, Arq 2021-09-08 7.2 HIGH 7.8 HIGH
The standardrestorer binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted restore path.
CVE-2017-16928 2 Apple, Haystacksoftware 2 Macos, Arq 2021-09-08 7.2 HIGH 7.8 HIGH
The arq_updater binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted update URL, as demonstrated by file:///tmp/blah/Arq.zip.