📦 Bdr Suite

CVE-2021-26471 is an unauthenticated remote code execution vulnerability in Vembu backup products. Attackers can execute arbitrary shell commands via the /sgwebservice_o.php API endpoint without authe...

CVE-2021-26473 is a critical vulnerability in VembuBDR and VembuOffsiteDR backup software that allows unauthenticated attackers to write arbitrary files to the web server via a flawed HTTP API endpoin...

CVE-2021-43458 is an unquoted service path vulnerability in Vembu BDR 4.2.0.1 that allows local attackers to escalate privileges by placing malicious executables in service directories. Attackers can ...