Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Heap-based Buffer Overflow in Bareos Director
Vulnerability Description
In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. Disabling verify jobs mitigates the problem. This issue is also patched in Bareos versions 19.2.8, 18.2.9 and 17.2.10.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
Bareos Director 缓冲区错误漏洞
Vulnerability Description
Bareos是德国Bareos公司的一套开源的数据备份存储和恢复软件。Bareos Director是Bareos的守护进程。 Bareos Director中存在安全漏洞。攻击者可通过发送较大的摘要字符串利用该漏洞破坏Director的内存。以下产品及版本受到影响:Bareos Director 16.2.10及之前版本,17.2.9及之前版本,18.2.8及之前版本,19.2.7及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A