Critical severity9.8NVD Advisory· Published Apr 12, 2017· Updated Jun 17, 2026
CVE-2017-7280
CVE-2017-7280
Description
An issue was discovered in api/includes/systems.php in Unitrends Enterprise Backup before 9.0.0. User input is not properly filtered before being sent to a popen function. This allows for remote code execution by sending a specially crafted user variable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- rhinosecuritylabs.com/research/remote-code-execution-bug-hunting-chapter-1/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.