Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
veritas netbackup appliance 3.0 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-46410
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0. An attacker with non-root privileges may escalate privileges to root by using specific commands.
Veritas Netbackup Flex Scale Appliance
8.8
CVSSv3
CVE-2022-46411
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
8.8
CVSSv3
CVE-2022-46412
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0. A non-privileged user may escape a restricted shell and execute privileged commands.
Veritas Netbackup Flex Scale Appliance
8.8
CVSSv3
CVE-2022-46413
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. Authenticated remote command execution can occur via the management portal.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
9.8
CVSSv3
CVE-2022-46414
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. Unauthenticated remote command execution can occur via the management portal.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
9.8
CVSSv3
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....
Vmware Spring Framework
Cisco Cx Cloud Agent
Oracle Sd-wan Edge 9.0
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Sd-wan Edge 9.1
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Oracle Product Lifecycle Analytics 3.6.1
Oracle Financial Services Enterprise Case Management 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 22.1.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0
175 Github repositories
7 Articles
9.8
CVSSv3
CVE-2017-8856
In Veritas NetBackup 8.0 and previous versions and NetBackup Appliance 3.0 and previous versions, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
Veritas Netbackup Appliance
Veritas Netbackup
9.8
CVSSv3
CVE-2017-8857
In Veritas NetBackup 8.0 and previous versions and NetBackup Appliance 3.0 and previous versions, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process.
Veritas Netbackup Appliance
Veritas Netbackup
9.8
CVSSv3
CVE-2017-8858
In Veritas NetBackup 8.0 and previous versions and NetBackup Appliance 3.0 and previous versions, there is unauthenticated privileged remote file write using the 'bprd' process.
Veritas Netbackup Appliance
Veritas Netbackup
9.8
CVSSv3
CVE-2017-8859
In Veritas NetBackup Appliance 3.0 and previous versions, unauthenticated users can execute arbitrary commands as root.
Veritas Netbackup Appliance 3.0
Veritas Netbackup Appliance
Veritas Netbackup Appliance 2.7.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »