CNNVD-202508-3154 Information

CNNVD ID

CNNVD-202508-3154

Related CVE

CVE-2025-34521

• CNNVD Published: 2025-08-27

Description (Chinese)

Arcserve Unified Data Protection是Arcserve公司的一体化数据和勒索软件保护解决方案。 Arcserve Unified Data Protection 10.2之前版本存在安全漏洞，该漏洞源于反射型跨站脚本，可能导致会话劫持。

Description (English)

Arcserve Unified Data Production is a comprehensive data and blackmail software protection solution for Arcserve. There was a security loophole in the previous version of Arcserve Unified Data Production 10.2, which originated in a reflector-type cross-site script that could lead to a session hijacking.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Arcserve

Published

2025-08-27

Last Modified

2026-02-24

References

https://support.arcserve.com/s/article/Important-Security-Bulletin-Must-read-for-all-Arcserve-UDP-customers-on-all-versions https://nvd.nist.gov/vuln/detail/CVE-2025-34521

Patch

https://support.arcserve.com/s/article/Important-Security-Bulletin-Must-read-for-all-Arcserve-UDP-customers-on-all-versions?language=en_US#PatchList