← Back

Crashplan For Small Business

crashplan_for_small_business

Vendor: Code42 • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-11551
1Code42
2Code42 For Enterprise
Crashplan For Small Business
Nov 21, 2024
Aug 21, 2019
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
In Code42 Enterprise and Crashplan for Small Business through Client version 6.9.1, an attacker can craft a restore request to restore a file through the Code42 app to a location they do not have privileges to write.
CVE-2019-11552
1Code42
2Code42 For Enterprise
Crashplan For Small Business
Nov 21, 2024
Jul 19, 2019
N/A· v4
7.0 HIGH· v3
4.4 MEDIUM· v2
Code42 Enterprise and Crashplan for Small Business Client version 6.7 before 6.7.5, 6.8 before 6.8.8, and 6.9 before 6.9.4 allows eval injection. A proxy auto-configuration file, crafted by a lesser privileged user, may...Show more
Code42 Enterprise and Crashplan for Small Business Client version 6.7 before 6.7.5, 6.8 before 6.8.8, and 6.9 before 6.9.4 allows eval injection. A proxy auto-configuration file, crafted by a lesser privileged user, may be used to execute arbitrary code at a higher privilege as the service user.Show less