PT-2026-28125 · Unknown · Iperius Backup

0Truust

Publicado

2026-03-25

Atualizado

2026-03-26

CVE-2026-4822

CVSS v3.1

7.0

Alta

Vetor

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Enter Software Iperius Backup versions 8.7.3 and earlier

Description A security issue exists in Enter Software Iperius Backup related to the Backup Service component. A manipulation of files within the C:ProgramDataIperiusBackupJobs directory, specifically an unknown function, can lead to the creation of temporary files with insecure permissions. This issue requires local access to exploit and is considered difficult to execute, requiring a high degree of complexity. The exploit is publicly available.

Recommendations Upgrade to version 8.7.4 or later to address this issue.

Exploit

Correção

LPE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-378CWE-377

Identificadores relacionados

CVE-2026-4822

Produtos afetados

Iperius Backup

PT-2026-28125 · Unknown · Iperius Backup

CVE-2026-4822

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8