Skip to the content.

Planned Vembu Full Disclosure

20 Aug 2021 - Frank Breedijk

If you are using Vembu BDR version 3.7.0, 3.9.1 Update 1, 4.2.0 or 4.2.0.1 and have your instances exposed to public internet, you are strongly advices to upgrade to Vembu BDR v4.2.0.2.

On the 25th of August we plan to release the full details of the following CVEs:

All of these vulnerabilities are unauthenticated remote code execution vulnerabilities.