Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Iperius Backup 6.1.0 Privilege Escalation via Backup Job
Vulnerability Description
Iperius Backup 6.1.0 contains a privilege escalation vulnerability that allows low-privilege users to execute arbitrary programs with elevated privileges by creating backup jobs. Attackers can configure backup jobs to execute malicious batch files or programs before or after backup operations, which run with the privileges of the Iperius Backup Service account (Local System or Administrator), enabling privilege escalation and arbitrary code execution.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
.NET误配置:使用伪装
Vulnerability Title
Iperius Backup 安全漏洞
Vulnerability Description
Iperius Backup是意大利Iperius Backup公司的一个备份工具。 Iperius Backup 6.1.0版本存在安全漏洞,该漏洞源于权限提升,可能导致低权限用户通过创建备份作业以提升的权限执行任意程序。
CVSS Information
N/A
Vulnerability Type
N/A