CVE-2025-34520

An authentication bypass vulnerability in Arcserve Unified Data Protection (UDP) allows unauthenticated attackers to gain unauthorized access to protected functionality or user accounts. By manipulating specific request parameters or exploiting a logic flaw, an attacker can bypass login mechanisms without valid credentials and access administrator-level features. This vulnerability affects all UDP versions prior to 10.2. UDP 10.2 includes the necessary patches and requires no action. Versions 8.0 through 10.1 are supported and require either patch application or upgrade to 10.2. Versions 7.x and earlier are unsupported or out of maintenance and must be upgraded to 10.2 to remediate the issue.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://support.arcserve.com/s/article/Important-Security-Bulletin-Must-read-for-all-Arcserve-UDP-customers-on-all-versions	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:arcserve:udp::::::::
	cpe:2.3:a:arcserve:udp::::::::
	cpe:2.3:a:arcserve:udp:7.0:-::::::
	cpe:2.3:a:arcserve:udp:7.0:update_1::::::
	cpe:2.3:a:arcserve:udp:7.0:update_2::::::

History

09 Sep 2025, 15:01

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
First Time		Arcserve Arcserve udp
References	~~() https://support.arcserve.com/s/article/Important-Security-Bulletin-Must-read-for-all-Arcserve-UDP-customers-on-all-versions -~~	() https://support.arcserve.com/s/article/Important-Security-Bulletin-Must-read-for-all-Arcserve-UDP-customers-on-all-versions - Vendor Advisory
CPE		cpe:2.3:a:arcserve:udp:7.0:update_2:::::: cpe:2.3:a:arcserve:udp:7.0:-:::::: cpe:2.3:a:arcserve:udp:7.0:update_1:::::: cpe:2.3:a:arcserve:udp::::::::

27 Aug 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-27 22:15

Updated : 2025-09-09 15:01

NVD link : CVE-2025-34520

Mitre link : CVE-2025-34520

CVE.ORG link : CVE-2025-34520

JSON object : View

Products Affected

arcserve

udp

CWE

CWE-288

Authentication Bypass Using an Alternate Path or Channel

{"id": "CVE-2025-34520", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}], "cvssMetricV40": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7.7, "Automatable": "NOT_DEFINED", "attackVector": "ADJACENT", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-08-27T22:15:57.703", "references": [{"url": "https://support.arcserve.com/s/article/Important-Security-Bulletin-Must-read-for-all-Arcserve-UDP-customers-on-all-versions", "tags": ["Vendor Advisory"], "source": "disclosure@vulncheck.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "description": [{"lang": "en", "value": "CWE-288"}]}], "descriptions": [{"lang": "en", "value": "An authentication bypass vulnerability in Arcserve Unified Data Protection (UDP) allows unauthenticated attackers to gain unauthorized access to protected functionality or user accounts. By manipulating specific request parameters or exploiting a logic flaw, an attacker can bypass login mechanisms without valid credentials and access administrator-level features. This vulnerability affects all UDP versions prior to 10.2. UDP 10.2 includes the necessary patches and requires no action. Versions 8.0 through 10.1 are supported and require either patch application or upgrade to 10.2. Versions 7.x and earlier are unsupported or out of maintenance and must be upgraded to 10.2 to remediate the issue."}], "lastModified": "2025-09-09T15:01:02.443", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:arcserve:udp:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53D70153-E6B7-4D27-83AA-77817EBBBC3E", "versionEndExcluding": "7.0"}, {"criteria": "cpe:2.3:a:arcserve:udp:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7644D867-3950-4EBF-9CBE-644458C26801", "versionEndExcluding": "10.2", "versionStartIncluding": "8.0"}, {"criteria": "cpe:2.3:a:arcserve:udp:7.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1CAB17ED-9FBC-475F-8206-3BC8E672C719"}, {"criteria": "cpe:2.3:a:arcserve:udp:7.0:update_1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8672F05B-B0FC-4A81-8D5B-2A7DE8C6D92D"}, {"criteria": "cpe:2.3:a:arcserve:udp:7.0:update_2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1379C0DE-8BB0-47FF-AE56-6E54F125E5A0"}], "operator": "OR"}]}], "sourceIdentifier": "disclosure@vulncheck.com"}