VYPR

Code42

by Code42

CVEs (2)

  • CVE-2021-43269Jan 20, 2022
    risk 0.00cvss epss 0.01

    In Code42 app before 8.8.0, eval injection allows an attacker to change a device’s proxy configuration to use a malicious proxy auto-config (PAC) file, leading to arbitrary code execution. This affects Incydr Basic, Advanced, and Gov F1; CrashPlan Cloud; and CrashPlan for…

  • CVE-2020-12736Jul 7, 2020
    risk 0.00cvss epss 0.02

    Code42 environments with on-premises server versions 7.0.4 and earlier allow for possible remote code execution. When an administrator creates a local (non-SSO) user via a Code42-generated email, the administrator has the option to modify content for the email invitation. If the…