Exagrid Backup Appliance Firmware 48.1.1044.p50 Directory traversal Vulnerability
ExaGrid appliances with firmware version v184.108.40.2064.P50 have a /monitor/data/Upgrade/ directory traversal vulnerability, which allows remote attackers to view and retrieve verbose logging information.
The information has been provided by Jeremy Trinka
The original article can be found at: https://exagrid.com/exagrid-products/resources/
The Exagrid backup appliance at version 220.127.116.114.P50 suffers from a directory traversal vulnerability at “http://EXAGRID_IP/monitor/data/Upgrade/” (case sensitive) which allows unauthenticated access to detailed log files. Active “support” credentials were found within these logs in Base64 encoded format.
The credentials were confirmed as used to facilitate upgrades on the appliance through a series of Perl scripts. The execution of one such script dumps the encoded credentials into the log file “progress.log” within this directory. These ‘support’ credentials allow for administrative level access to the appliance and its data once decoded.
- Exagrid Backup Appliance Firmware 48.1.1044.p50