Vulnerability in R1Soft’s backup manager was exploited to deploy a backdoor

Vulnerability in R1Soft's backup manager was exploited to deploy a backdoor

A vulnerability discovered last year in ConnectWise’s R1Soft Server Backup Manager software was exploited to deploy a backdoor on hundreds of servers.

In late October 2022, ConnectWise notified customers that a critical vulnerability has been fixed in Recover and R1Soft Server Backup Manager that could allow an attacker to execute arbitrary code or directly access confidential data. At the time, the vendor warned that the bug posed a high risk of exploitation in the wild and urged users to patch their installations as soon as possible.

Later, managed endpoint detection and response (EDR) company Huntress explained that it was actually an authentication bypass and sensitive file leak vulnerability affecting the ZK Java framework used by R1Soft software.

Read more: R1Soft Server Backup Manager Vulnerability Exploited to Deploy Backdoor

For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.