Loading
The EdgeServiceImpl web service in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive credentials via a crafted SOAP request to the (1) getBackupPolicy or (2) getBackupPolicies method.
Use CWE-200, Arcserve vendor hub and Arcserve Unified Data Protection product page to widen CVE-2015-4069 into its surrounding weakness, vendor, and product context.