CVE-2023-41999

Name of the Vulnerable Software and Affected Versions Arcserve UDP versions prior to 9.2

Description An authentication bypass issue exists, allowing an unauthenticated, remote attacker to obtain a valid authentication identifier. This identifier enables the attacker to authenticate to the management console and perform tasks that require authentication.

Recommendations For versions prior to 9.2, update to version 9.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the management console to minimize the risk of exploitation.