Unrated severityNVD Advisory· Published Dec 6, 2021· Updated Aug 4, 2024
CVE-2021-43038
CVE-2021-43038
Description
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The wguest account could execute commands by injecting into PostgreSQL trigger functions. This allowed privilege escalation from the wguest user to the postgres user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Kaseya/Unitrends Backup Appliancedescription
- Range: <10.5.5
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.