Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
veritas netbackup appliance vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-34404
A vulnerability exists in the Alta Recovery Vault feature of Veritas NetBackup prior to 10.4 and NetBackup Appliance prior to 5.4. By design, only the cloud administrator should be able to disable the retention lock of Governance mode images. This vulnerability allowed a NetBacku...
NA
CVE-2024-28222
In Veritas NetBackup prior to 8.1.2 and NetBackup Appliance prior to 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated malicious user to upload and execute a custom file.
1 Github repository
7.2
CVSSv3
CVE-2023-37237
In Veritas NetBackup Appliance prior to 4.1.0.1 MR3, insecure permissions may allow an authenticated Admin to bypass shell restrictions and execute arbitrary operating system commands via SSH.
Veritas Netbackup Appliance 4.1.0.1
Veritas Netbackup Appliance
6.1
CVSSv3
CVE-2023-26788
Veritas Appliance v4.1.0.1 is affected by Host Header Injection attacks. HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the request to be sent to a completely different Domain/IP address.
Veritas Netbackup Appliance Firmware 4.1.0.1
8.8
CVSSv3
CVE-2022-46410
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0. An attacker with non-root privileges may escalate privileges to root by using specific commands.
Veritas Netbackup Flex Scale Appliance
8.8
CVSSv3
CVE-2022-46411
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
8.8
CVSSv3
CVE-2022-46412
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0. A non-privileged user may escape a restricted shell and execute privileged commands.
Veritas Netbackup Flex Scale Appliance
8.8
CVSSv3
CVE-2022-46413
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. Authenticated remote command execution can occur via the management portal.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
9.8
CVSSv3
CVE-2022-46414
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. Unauthenticated remote command execution can occur via the management portal.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
8.8
CVSSv3
CVE-2022-36989
An issue exists in Veritas NetBackup 8.1.x up to and including 8.1.2, 8.2, 8.3.x up to and including 8.3.0.2, 9.x up to and including 9.0.0.1, and 9.1.x up to and including 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could...
Veritas Netbackup 9.1
Veritas Netbackup Appliance 4.0.0.1
Veritas Netbackup Appliance 4.1.0.1
Veritas Flex Appliance 2.0
Veritas Flex Appliance 2.0.1
Veritas Flex Appliance 2.0.2
Veritas Flex Appliance 2.1
Veritas Flex Appliance 1.3
Veritas Netbackup 9.0
Veritas Netbackup 8.2
Veritas Netbackup Appliance 3.3.0.1
Veritas Netbackup Appliance 3.3.0.2
Veritas Netbackup Appliance 3.2
Veritas Netbackup Appliance 3.1.1
Veritas Netbackup Appliance 3.1.2
Veritas Netbackup 9.0.0.1
Veritas Netbackup 9.1.0.1
Veritas Netbackup 8.1.2
Veritas Netbackup 8.1.1
Veritas Netbackup 8.3.0.1
Veritas Netbackup 8.3.0.2
Veritas Netbackup Appliance 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »