NAKIVO Backup & ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)À´Ï®£¬mansion88Ã÷ÉýÌṩ½â¾ö·½°¸

·¢²¼Ê±¼ä 2025-02-28

NAKIVO Backup & Replication ÊÇÒ»¿îרעÓÚÐéÄ⻯¡¢Ôƶ˼°»ìºÏ»·¾³µÄ±¸·ÝÓëÔÖÄѻָ´µÄ½â¾ö·½°¸£¬ÊÊÓÃÓÚ VMware vSphere¡¢Microsoft Hyper-V¡¢Nutanix AHV¡¢Amazon EC2¡¢Windows/Linux ºÍ Microsoft 365 »·¾³¡£±¸·Ý·þÎñÆ÷¿ÉÒÔ°²×°ÔÚ Windows¡¢Linux ºÍ NAS ²Ù×÷ϵͳÉÏ£¬ÓÈÆäÊʺÏÖÐСÆóÒµÊг¡¡£


2025Äê2Ô£¬mansion88Ã÷Éý¼à¿Øµ½µ½¹Ù·½ÐÞ¸´NAKIVO Backup & ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)£¬¹¥»÷Õß¿ÉÀûÓÃSTPreLoadManagement ÀàÖÐµÄ getImageByPath·½·¨£¬Èƹý·¾¶ÑéÖ¤²¢¶ÁȡĿ±ê·þÎñÆ÷ÉϵÄÈÎÒâÎļþ£¨°üÀ¨Ãô¸ÐÅäÖÃÎļþ¡¢Êý¾Ý¿â¡¢±¸·ÝÈÕÖ¾µÈ£©


1.png

¡¾Â©¶´¸´ÏÖ½ØÍ¼¡¿

 

 

2.png

3.png

¡¾Ó°Ïì°æ±¾¡¿


NAKIVO Backup & Replication < v11.0.0.88174


¡¾ÐÞ¸´½¨Òé¡¿


Ò»¡¢¹Ù·½ÐÞ¸´·½°¸£º

Ŀǰ¹Ù·½ÒÑ·¢²¼°²È«¸üУ¬½¨ÒéÓû§¾¡¿ìÉý¼¶ÖÁ×îа汾£º

https://www.nakivo.com/resources/download/trial-download/download/


¶þ¡¢mansion88Ã÷Éý·½°¸£º


1¡¢mansion88Ã÷Éý¼ì²âÀà²úÆ··½°¸


ÌìãÙÈëÇÖ¼ì²âÓë¹ÜÀíϵͳ£¨IDS£©£¬Éý¼¶µ½×îа汾

ÌìãÙ³¬Èںϼì²â̽Õ루CSP£©£¬Éý¼¶µ½×îа汾

ÌìãÙÍþв·ÖÎöÒ»Ìå»ú£¨TAR£©£¬Éý¼¶µ½×îа汾

ÌìÇåWEB°²È«Ó¦ÓÃÍø¹Ø£¨WAF£©£¬Éý¼¶µ½×îа汾

ÌìÇåÈëÇÖ·ÀÓùϵͳ£¨IPS£©£¬Éý¼¶µ½×îа汾


¼´¿ÉÓÐЧ¼ì²â»ò·À»¤¸Ã©¶´Ôì³ÉµÄ¹¥»÷·çÏÕ£¬Ê¼þ¿âÏÂÔØµØÖ·£º

ʼþ¿âÏÂÔØµØÖ·£ºhttps://venustech.download.venuscloud.cn/


2¡¢mansion88Ã÷Éý©ɨ²úÆ··½°¸


£¨1£©¡°mansion88Ã÷Éý©¶´É¨ÃèϵͳV6.0¡±²úÆ·ÒÑÖ§³Ö¶Ô¸Ã©¶´½øÐÐɨÃè

 4.png


£¨2£©mansion88Ã÷Éý©¶´É¨Ãèϵͳ608XϵÁа汾ÒÑÖ§³Ö¶Ô¸Ã©¶´½øÐÐɨÃè

 5.png


3¡¢mansion88Ã÷Éý×ʲúÓë´àÈõÐÔ¹ÜÀíÆ½Ì¨²úÆ··½°¸


mansion88Ã÷Éý×ʲúÓë´àÈõÐÔ¹ÜÀíÆ½Ì¨ÊµÊ±²É¼¯²¢¸üÐÂÇ鱨ÐÅÏ¢£¬¶ÔÈë¿â×ʲúNAKIVO Backup & ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)½øÐйÜÀí¡£

6.png 


4¡¢mansion88Ã÷Éý°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨²úÆ··½°¸


Óû§¿ÉÒÔͨ¹ýÌ©ºÏ°²È«¹ÜÀíºÍÌ¬ÊÆ¸Ð֪ƽ̨£¬½øÐйØÁª²ßÂÔÅäÖ㬽áºÏʵ¼Ê»·¾³ÖÐϵͳÈÕÖ¾ºÍ°²È«É豸µÄ¸æ¾¯ÐÅÏ¢½øÐгÖÐø¼à¿Ø£¬´Ó¶ø·¢ÏÖ¡°NAKIVO Backup & ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)¡±µÄ©¶´ÀûÓù¥»÷ÐÐΪ¡£


1£©ÔÚÌ©ºÏµÄƽ̨ÖУ¬Í¨¹ý´àÈõÐÔ·¢ÏÖ¹¦ÄÜÕë¶Ô¡°NAKIVO Backup & ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)¡±Â©¶´É¨ÃèÈÎÎñ£¬ÅŲé¹ÜÀíÍøÂçÖÐÊÜ´Ë©¶´Ó°ÏìµÄÖØÒª×ʲú£»

7.png 


2£©Æ½Ì¨¡°¹ØÁª·ÖÎö¡±Ä£¿éÖУ¬Ìí¼Ó¡°L2_NAKIVO_Backup_ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)¡±£¬Í¨¹ýmansion88Ã÷Éý¼ì²âÉ豸¡¢Ä¿±êÖ÷»úϵͳµÈÉ豸µÄ¸æ¾¯ÈÕÖ¾£¬·¢ÏÖÍⲿ¹¥»÷ÐÐΪ£º

8.png 


ͨ¹ý·ÖÎö¹æÔò×Ô¶¯½«"L2_NAKIVO_Backup_ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)"©¶´ÀûÓõĿÉÒÉÐÐΪԴµØÖ·Ìí¼Óµ½¹Û²ìÁÐ±í¡°¸ß·çÏÕÁ¬½Ó¡±ÖУ¬×÷ΪÄÚ²¿Ç鱨Êý¾ÝʹÓã»


3£©Ìí¼Ó¡°L3_NAKIVO_Backup_ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)¡±£¬Ìõ¼þÈÕÖ¾Ãû³ÆµÈÓÚ»ò°üº¬¡°L2_NAKIVO_Backup_ReplicationÈÎÒâÎļþ¶Áȡ©¶´(CVE-2024-48248)¡±£¬¹¥»÷½á¹ûµÈÓÚ¡°¹¥»÷³É¹¦¡±£¬Ä¿µÄµØÖ·ÒýÓÃ×ʲú©¶´»òÔ´µØÖ·Æ¥ÅäÍþвÇ鱨£¬´Ó¶øÌáÉý¹ØÁª¹æÔòµÄÖÃÐŶÈ¡£

9.png