Filtered by vendor Haystacksoftware
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-36617 | 1 Haystacksoftware | 1 Arq Backup | 2022-09-14 | N/A | 4.9 MEDIUM |
Arq Backup 7.19.5.0 and below stores backup encryption passwords using reversible encryption. This issue allows attackers with administrative privileges to recover cleartext passwords. | |||||
CVE-2017-16945 | 2 Apple, Haystacksoftware | 2 Macos, Arq | 2021-09-08 | 7.2 HIGH | 7.8 HIGH |
The standardrestorer binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted restore path. | |||||
CVE-2017-16928 | 2 Apple, Haystacksoftware | 2 Macos, Arq | 2021-09-08 | 7.2 HIGH | 7.8 HIGH |
The arq_updater binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted update URL, as demonstrated by file:///tmp/blah/Arq.zip. |