vulnerability

FreeBSD: VID-0d369972-d4ba-11e7-bfca-005056925db4 (CVE-2017-15914): borgbackup -- remote users can override repository restrictions

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	Nov 29, 2017	Nov 29, 2017	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

Nov 29, 2017

Added

Nov 29, 2017

Modified

Dec 10, 2025

Description

BorgBackup reports: Incorrect implementation of access controls allows remote users to override repository restrictions in Borg servers. A user able to access a remote Borg SSH server is able to circumvent access controls post-authentication. Affected releases: 1.1.0, 1.1.1, 1.1.2. Releases 1.0.x are NOT affected.

Solutions

freebsd-upgrade-package-py34-borgbackupfreebsd-upgrade-package-py35-borgbackupfreebsd-upgrade-package-py36-borgbackup

References

CVE-2017-15914
https://attackerkb.com/topics/CVE-2017-15914

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today