Code42 security advisories
Who is this article for?
Incydr, yes.
CrashPlan for Enterprise, yes.
Code42 for Enterprise, yes.
CrashPlan for Small Business, yes.
Overview
This article provides advisories about security vulnerabilities in Code42 products. These security vulnerabilities have been submitted to the Mitre Common Vulnerabilities and Exposures (CVE) list.
Security advisories
Click the title of the advisory for more information, including affected versions and the version that you should upgrade to in order to resolve the issue.
| Publication date | Title |
|---|---|
| July 6, 2020 | Remote code execution on Code42 servers |
| November 15, 2019 |
Arbitrary code execution on local Windows devices
|
| September 16, 2019 | Arbitrary file creation on Code42 servers |
| August 19, 2019 | Users can restore files to locations they do not have write access to |
| July 11, 2019 | Privilege Escalation in LoginToken API |
| July 11, 2019 | Untrusted data is executed as System via a PAC file read by CrashPlanService.exe |
| December 13, 2018 | Permissions vulnerability in Code42 app on Linux |
Sign up for email notifications
If you want to be notified when Code42 identifies a security vulnerability, navigate to the Code42 email preferences page and check the box "Common Security and Vulnerability Reports" in the preferences form.
Related topics
Other resources
- Code42: Security