Unrated severityNVD Advisory· Published Feb 9, 2023· Updated Mar 24, 2025
Arbitrary File Write in High Availability Backup Upload
CVE-2023-0745
Description
The High Availability functionality of Yugabyte Anywhere can be abused to write arbitrary files through the backup upload endpoint by using path traversal characters.
This vulnerability is associated with program files PlatformReplicationManager.Java.
This issue affects YugabyteDB Anywhere: from 2.0.0.0 through 2.13.0.0
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=2.0.0.0 <=2.13.0.0
- YugabyteDB/YugabyteDB Anywherev5Range: 2.0
Patches
Vulnerability mechanics
References
1- www.yugabyte.commitreissue-tracking
News mentions
0No linked articles in our index yet.