CVE-2012-1662 — Improper Input Validation in Arcserve Backup

CWE-20 — Improper Input Validation3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.8%

top 17.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Arcserve Backup

Timeline

PublishedMar 22

Latest updateMay 13

Description

CA ARCserve Backup r12.0 through SP2, r12.5 before SP2, r15 through SP1, and r16 before SP1 on Windows allows remote attackers to cause a denial of service (service shutdown) via a crafted network request.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDbroadcom/arcserve_backupr16.0

🔴Vulnerability Details

GHSA

GHSA-g42c-7fq9-xmqv: CA ARCserve Backup r12↗2022-05-13

▶

CVEList

CVE-2012-1662: CA ARCserve Backup r12↗2012-03-22

▶