CVE-2025-27816

A vulnerability was discovered in the Arctera InfoScale 7.0 through 8.0.2 where a .NET remoting endpoint can be exploited due to the insecure deserialization of potentially untrusted messages. The vulnerability is present in the Windows Plugin_Host service, which runs on all the servers where InfoScale is installed. The service is used only when applications are configured for Disaster Recovery (DR) using the DR wizard. Disabling the Plugin_Host service manually will eliminate the vulnerability.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.veritas.com/content/support/en_US/security/ARC25-002

Configurations

No configuration.

History

07 Mar 2025, 20:15

Type	Values Removed	Values Added
Summary		(es) Se descubrió una vulnerabilidad en Arctera InfoScale 7.0 a 8.0.2, en la que se puede explotar un endpoint remoto .NET debido a la deserialización insegura de mensajes potencialmente no confiables. La vulnerabilidad está presente en el servicio Plugin_Host de Windows, que se ejecuta en todos los servidores donde está instalado InfoScale. El servicio se utiliza solo cuando las aplicaciones están configuradas para recuperación ante desastres (DR) mediante el asistente de recuperación ante desastres. Deshabilitar el servicio Plugin_Host manualmente eliminará la vulnerabilidad.
CWE		CWE-502

07 Mar 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-07 08:15

Updated : 2025-03-07 20:15

NVD link : CVE-2025-27816

Mitre link : CVE-2025-27816

CVE.ORG link : CVE-2025-27816

JSON object : View

Products Affected

No product.

CWE

CWE-502

Deserialization of Untrusted Data

9.8 /10