Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbackup vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-45461
The Java Admin Console in Veritas NetBackup up to and including 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users (that have been explicitly added to the auth.conf file) to execute arbitrary commands as root.
Veritas Netbackup
NA
CVE-2022-42299
An issue exists in Veritas NetBackup up to and including 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to a denial of service attack through the DiscoveryService service.
Veritas Netbackup
NA
CVE-2022-42300
An issue exists in Veritas NetBackup up to and including 10.0.0.1 and related Veritas products. The NetBackup Primary server nbars process can be crashed resulting in a denial of service. (Note: the watchdog service will automatically restart the process.)
Veritas Netbackup
NA
CVE-2022-42301
An issue exists in Veritas NetBackup up to and including 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity (XXE) injection attack through the nbars process.
Veritas Netbackup
NA
CVE-2022-42302
An issue exists in Veritas NetBackup up to and including 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting the NBFSMCLIENT service.
Veritas Netbackup
NA
CVE-2022-42303
An issue exists in Veritas NetBackup up to and including 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a second-order SQL Injection attack affecting the NBFSMCLIENT service by leveraging CVE-2022-42302.
Veritas Netbackup
NA
CVE-2022-42304
An issue exists in Veritas NetBackup up to and including 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting idm, nbars, and SLP manager code.
Veritas Netbackup
NA
CVE-2022-42305
An issue exists in Veritas NetBackup up to and including 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to a Path traversal attack through the DiscoveryService service.
Veritas Netbackup
NA
CVE-2022-42306
An issue exists in Veritas NetBackup up to and including 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbx_exchange during registration and cause a NULL pointer exception, effectively crashing the pbx_exchange process.
Veritas Netbackup
NA
CVE-2022-42307
An issue exists in Veritas NetBackup up to and including 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity (XXE) Injection attack through the DiscoveryService service.
Veritas Netbackup
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »