Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-39206

July 2, 2024, 6:15 p.m.

Tags

cve@mitre.org
2024-07-02
CVE-2024-39206

Product(s) Impacted

MSP360 Backup Agent

  • 7.8.5.15
  • 7.9.4.84

Description

An issue discovered in MSP360 Backup Agent v7.8.5.15 and v7.9.4.84 allows attackers to obtain network share credentials used in a backup due to enginesettings.list being encrypted with a hard coded key.

Weaknesses

Date

Published: July 2, 2024, 6:15 p.m.

Last Modified: July 2, 2024, 6:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://www.proactivelabs.com.au/ cve@mitre.org