Aggregates CVE and security vulnerability intelligence across all novastor-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk input validation and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact unexpected behavior and vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2016-4899 | The datamover module in the Linux version of NovaBACKUP DataCenter before 09.06.03.0353 is vulnerable to remote command execution via unspecified attack vectors. | [email protected] | 9.8 | 4.20% | 2017-04-13 | 2026-05-13 |
| CVE-2016-4898 | The datamover module in the Linux version of NovaBACKUP DataCenter before 09.06.03.0353 is vulnerable to remote command execution via unspecified attack vectors. | [email protected] | 9.8 | 4.20% | 2017-04-13 | 2026-05-13 |
| CVE-2009-0849 | Stack-based buffer overflow in the DtbClsLogin function in NovaStor NovaNET 12 allows remote attackers to (1) execute arbitrary code on Linux platforms via a long username field during backup domain authentication, related to libnnlindtb.so; or (2) cause a denial of service (daemon crash) on Windows platforms via a long username field during backup domain authentication, related to nnwindtb.dll. NOTE: some of these details are obtained from third party information. | [email protected] | 7.5 | 12.36% | 2009-03-09 | 2026-04-23 |