VYPR

Iperius Backup

by Entersrl

Source repositories

CVEs (6)

  • CVE-2018-25261HigApr 22, 2026
    risk 0.55cvss 8.4epss 0.00

    Iperius Backup 5.8.1 contains a local buffer overflow vulnerability in the structured exception handling (SEH) mechanism that allows local attackers to execute arbitrary code by supplying a malicious file path. Attackers can create a backup job with a crafted payload in the…

  • CVE-2019-25608HigMar 22, 2026
    risk 0.55cvss 8.4epss 0.00

    Iperius Backup 6.1.0 contains a privilege escalation vulnerability that allows low-privilege users to execute arbitrary programs with elevated privileges by creating backup jobs. Attackers can configure backup jobs to execute malicious batch files or programs before or after…

  • CVE-2026-4824HigMar 25, 2026
    risk 0.46cvss 7.0epss 0.00

    A vulnerability has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this issue is some unknown functionality of the component Backup Job Configuration File Handler. The manipulation leads to improper privilege management. The attack must be carried out…

  • CVE-2026-4822HigMar 25, 2026
    risk 0.46cvss 7.0epss 0.00

    A vulnerability was detected in Enter Software Iperius Backup up to 8.7.3. Affected is an unknown function of the file C:\ProgramData\IperiusBackup\Jobs\ of the component Backup Service. Performing a manipulation results in creation of temporary file with insecure permissions.…

  • CVE-2026-5310LowApr 1, 2026
    risk 0.16cvss 2.5epss 0.00

    A vulnerability was identified in Enter Software Iperius Backup up to 8.7.2. This impacts an unknown function of the file IperiusAccounts.ini. Such manipulation leads to use of hard-coded cryptographic key . The attack must be carried out locally. This attack is characterized…

  • CVE-2026-4823LowMar 25, 2026
    risk 0.16cvss 2.5epss 0.00

    A flaw has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this vulnerability is an unknown functionality of the component NTLM2 Handler. Executing a manipulation can lead to information disclosure. The attack is restricted to local execution. Attacks of…