Vulnerabilities in the Linux version of NovaStor DataCenter

NovaStor DataCenter is a backup solution that is used in server environments. Two critical vulnerabilities have been fixed in its Linux agent.

The vulnerabilities are related to input handling within the DataCenter agent. The vulnerabilities may allow an attacker to execute arbitrary commands in the target system.

Vulnerability coordination

The vulnerabilities were found in the LocalTapiola bug bounty program. NCSC-FI would like to thank LocalTapiola, MultiCom and Novastor for participating in the coordination.

  • Servers and server applications
  • Workstations and end-user applications
  • Network devices
  • Mobile communications systems
  • Embedded systems
  • Others

Target

  • Servers and server applications
Further information +

Attack vector

  • No authentication required
  • Remote
  • No user interaction required
Further information on the access vector +

Impact

  • Execution of arbitrary commands
Further information on the impact +

Remediation

  • Software update patch
Further information on the remediation +

Vulnerable software:

  • The datamover module within the Linux version of NovaStor DataCenter, prior to version 09.06.03.0353

Possible solutions and restrictive measures:

Update the vulnerable components according to vendor instructions.

The vulnerabilities can be remediated by filtering traffic to the vulnerable component (TCP port 32323), or by segregating backup traffic.

Further information:

Contact Information

NCSC-FI Vulnerability Coorination can be contacted as follows:
Email: vulncoord@ficora.fi
Please quote the advisory reference [FICORA #919081] in the subject line.

Telephone:
+385 295 390 230
Monday - Friday 08:00 – 16:15 (EET: UTC+2)

Post:
Vulnerability Coordination
FICORA / NCSC-FI
P.O. Box 313
FI-00181 Helsinki
FINLAND

NCSC-FI encourages those who wish to communicate via email to make use of our PGP key. The key is available at https://www.viestintavirasto.fi/en/informationsecurity/ficorasinformationsecurityservices/vulnerabilitycoordination.html

Update history

Key words: Information security , Internet , CERT , Vulnerability coordination , Vulnerabilities

LinkedIn Print

logo

The Finnish Communications Regulatory Authority (FICORA)

The National Cyber Security Centre Finland (NCSC-FI)

Itämerenkatu 3 A

P.O. Box 313

FI-00180 HELSINKI


Media contacts by telephone +358 295 390 248