Vsphere data protection
This hub aggregates every CVE we track for Vsphere data protection, a product in the cloud saas space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
4
Critical
0
High
0
In CISA KEV
Severity distribution
MEDIUM4CRITICAL4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 8 most recently published vulnerabilities affecting Vsphere data protection.
- CVE-2018-11077Dell EMC Avamar and Integrated Data Protection Appliance Command Injection Vulnerability6.7
- CVE-2018-11076Dell EMC Avamar and Integrated Data Protection Appliance Information Exposure Vulnerability6.5
- CVE-2018-11067Dell EMC Avamar and Integrated Data Protection Appliance Open Redirection Vulnerability6.1
- CVE-2018-11066Dell EMC Avamar and Integrated Data Protection Appliance Remote Code Execution Vulnerability9.8
- CVE-2017-4914VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x contains a deserialization issue. Exploitation of this issue may allow a remote attacker to execute commands on the appliance.9.8
- CVE-2017-4917VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained.9.8
- CVE-2016-7456VMware vSphere Data Protection (VDP) 5.5.x though 6.1.x has an SSH private key with a publicly known password, which makes it easier for remote attackers to obtain login access via an SSH session.9.8
- CVE-2014-4632VMware vSphere Data Protection (VDP) 5.1, 5.5 before 5.5.9, and 5.8 before 5.8.1 and the proxy client in EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) 6.x and 7.0.x do not properly v...4.3
Product normalization is registry-driven with AI assist and human review. How it works