rubrik CVE Vulnerabilities & Metrics

About rubrik Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with rubrik. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Critical rubrik CVEs (CVSS ≥ 9) Over 20 Years

Top 5 Highest CVSS rubrik CVEs

These are the five CVEs with the highest CVSS scores for rubrik, sorted by severity first and recency.

• CVE-2020-9478 rubrik Published on 13 Apr 2020, 15:15 UTC (CVSS: 9.0)
  An issue was discovered in Rubrik 5.0.3-2296. An OS command injection vulnerability allows an authenticated attacker to remotely execute arbitrary code on Rubrik-managed systems.
• CVE-2018-5761 rubrik Published on 22 Jan 2018, 17:29 UTC (CVSS: 4.3)
  A man-in-the-middle vulnerability related to vCenter access was found in Rubrik CDM 3.x and 4.x before 4.0.4-p2. This vulnerability might expose Rubrik user credentials configured to access vCenter as Rubrik clusters did not verify TLS certificates presented by vCenter.
• CVE-2024-36068 rubrik Published on 27 Aug 2024, 18:15 UTC (CVSS: 0)
  An incorrect access control vulnerability in Rubrik CDM versions prior to 9.1.2-p1, 9.0.3-p6 and 8.1.3-p12, allows an attacker with network access to execute arbitrary code.
• CVE-2022-30984 rubrik Published on 26 Aug 2022, 00:15 UTC (CVSS: 0)
  A buffer overflow vulnerability in the Rubrik Backup Service (RBS) Agent for Linux or Unix-based systems in Rubrik CDM 7.0.1, 7.0.1-p1, 7.0.1-p2 or 7.0.1-p3 before CDM 7.0.2-p2 could allow a local attacker to obtain root privileges by sending a crafted message to the RBS agent.

All CVEs for rubrik