vuln disclosure
Arcserve UDP Agent Path Traversal Vulnerability CVE-2023-42000CVE-2023-42000
A path traversal vulnerability in Arcserve UDP agent prior to version 9.2 allows unauthenticated remote attackers to upload arbitrary files to any location on the file system where the agent is installed. This can lead to remote code execution and full system compromise. A proof-of-concept exploit is publicly available, but no in-the-wild exploitation has been confirmed.