CVE-2014-3139

Unitrends Enterprise Backup - Authentication Bypass

Title source: rule

Description

recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to bypass authentication by setting the auth parameter to a certain string.

Exploits (1)

exploitdb WORKING POC

by Brandon Perry · rubyremoteunix

https://www.exploit-db.com/exploits/32885

View Code ZIP pw:eip

References (3)

Core 3

Core References

Exploit mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2014/Apr/204

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/32885

Various Sources x_refsource_misc

https://gist.github.com/brandonprry/10745756

Scores

EPSS 0.0428

EPSS Percentile 88.9%

Details

CWE

CWE-287

Status published

Products (1)

unitrends/enterprise_backup 7.3.0

Published May 02, 2014

Tracked Since Feb 18, 2026