VYPR

Backup Agent

by Datto

CVEs (1)

  • CVE-2017-16673MedNov 9, 2017
    risk 0.34cvss 5.3epss 0.00

    Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to "pair" with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send…