VYPR
Vendor

Borgbackup

Products
2
CVEs
4
Across products
6
Status
Private

Products

2

Recent CVEs

4
  • CVE-2016-10100MedJan 2, 2017
    risk 0.35cvss 5.3epss 0.01

    Borg (aka BorgBackup) before 1.0.9 has a flaw in the way duplicate archive names were processed during manifest recovery, potentially allowing an attacker to overwrite an archive.

  • CVE-2016-10099MedJan 2, 2017
    risk 0.35cvss 5.3epss 0.01

    Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives.

  • CVE-2023-36811Aug 30, 2023
    risk 0.00cvss epss 0.00

    borgbackup is an opensource, deduplicating archiver with compression and authenticated encryption. A flaw in the cryptographic authentication scheme in borgbackup allowed an attacker to fake archives and potentially indirectly cause backup data loss in the repository. The attack…

  • CVE-2023-26265Feb 21, 2023
    risk 0.00cvss epss 0.01

    The Borg theme before 1.1.19 for Backdrop CMS does not sufficiently sanitize path arguments that are passed in via a URL. The function borg_preprocess_page in the file template.php does not properly sanitize incoming path arguments before using them.