CVE-2020-8289

HIGH

Backblaze <7.0.1.433-7.0.1.434 - RCE

Title source: llm

Description

Backblaze for Windows before 7.0.1.433 and Backblaze for macOS before 7.0.1.434 suffer from improper certificate validation in `bztransmit` helper due to hardcoded whitelist of strings in URLs where validation is disabled leading to possible remote code execution via client update functionality.

Exploits (2)

nomisec WORKING POC 11 stars

by geffner · poc

https://github.com/geffner/CVE-2020-8289

View Code ZIP pw:eip

github WORKING POC 4 stars

by X1cT34m · cpoc

https://github.com/X1cT34m/CVE-and-PoC/tree/main/2020/CVE-2020-8289

View Code ZIP pw:eip

References (6)

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2020/Dec/57

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2020/Dec/58

[Exploit, Third Party Advisory] https://github.com/geffner/CVE-2020-8289/blob/master/README.md

[Permissions Required] https://hackerone.com/reports/818853

[Third Party Advisory] https://www.backblaze.com/blog/backblaze-cloud-backup-release-7-0-1/

[Exploit, Third Party Advisory] https://youtu.be/W0THXbcX5V8

Scores

CVSS v3 7.8

EPSS 0.2054

EPSS Percentile 95.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-295

Status published

Products (2)

backblaze/backblaze < 7.0.1.433

backblaze/backblaze < 7.0.1.434

Published Dec 27, 2020

Tracked Since Feb 18, 2026