Broadcom Arcserve Backup — known CVE vulnerabilities
Every CVE whose affected-product data names Broadcom Arcserve Backup, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2008-4397 — CVSS 10.0 (critical): Directory traversal vulnerability in the RPC interface (asdbapi.dll) in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1…
CVE-1999-1049 — CVSS 10.0 (critical): ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050…
CVE-2001-0960 — CVSS 10.0 (critical): Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user name and password in cleartext in the…
CVE-2008-5415 — CVSS 10.0 (critical): The LDBserver service in the server in CA ARCserve Backup 11.1 through 12.0 on Windows allows remote attackers to execute arbitrary code…
CVE-2001-0959 — CVSS 6.4 (medium): Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 creates a hidden share named ARCSERVE$, which allows remote attackers…
CVE-2012-1662 — CVSS 5.0 (medium): CA ARCserve Backup r12.0 through SP2, r12.5 before SP2, r15 through SP1, and r16 before SP1 on Windows allows remote attackers to cause a…
CVE-2008-4398 — CVSS 5.0 (medium): Unspecified vulnerability in the tape engine service in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1…
CVE-2008-4399 — CVSS 5.0 (medium): Unspecified vulnerability in the database engine service in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1…
CVE-2008-4400 — CVSS 5.0 (medium): Unspecified vulnerability in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote…
CVE-1999-1322 — CVSS 4.6 (medium): The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains…
CVE-2009-3588 — CVSS 4.3 (medium): Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus)…
CVE-2001-1346 — CVSS 1.2 (low): Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack…