NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials).
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 14 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.93558}

epss

{'score': 0.93852}


Tue, 27 May 2025 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 25 Mar 2025 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Nakivo
Nakivo backup \& Replication Director
Weaknesses NVD-CWE-Other
CPEs cpe:2.3:a:nakivo:backup_\&_replication_director:*:*:*:*:*:*:*:*
Vendors & Products Nakivo
Nakivo backup \& Replication Director

Wed, 19 Mar 2025 23:15:00 +0000

Type Values Removed Values Added
Metrics kev

{'dateAdded': '2025-03-19'}


Tue, 04 Mar 2025 16:15:00 +0000

Type Values Removed Values Added
References
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 04 Mar 2025 08:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-36
Metrics cvssV3_1

{'score': 8.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N'}


Tue, 04 Mar 2025 07:45:00 +0000

Type Values Removed Values Added
Description NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials).
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-07-30T01:36:18.985Z

Reserved: 2024-10-08T00:00:00.000Z

Link: CVE-2024-48248

cve-icon Vulnrichment

Updated: 2025-03-04T15:35:25.437Z

cve-icon NVD

Status : Analyzed

Published: 2025-03-04T08:15:33.550

Modified: 2025-03-25T18:48:31.753

Link: CVE-2024-48248

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.