Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
veritas access vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2017-15517
AltaVault OST Plug-in versions before 1.2.2 may allow malicious users to obtain sensitive information via unspecified vectors. All users are urged to move to a fixed version and change passwords used by Veritas NetBackup to access the OST shares on the NetApp AltaVault as a preca...
Netapp Altavault Ost Plug-in
NA
CVE-2024-33673
An issue exists in Veritas Backup Exec prior to 22.2 HotFix 917391. Improper access controls allow for DLL Hijacking in the Windows DLL Search path.
NA
CVE-2023-40256
A vulnerability exists in Veritas NetBackup Snapshot Manager prior to 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this i...
Veritas Netbackup Snapshot Manager 9.1
Veritas Netbackup Snapshot Manager 9.1.0.1
Veritas Netbackup Snapshot Manager 10.0
Veritas Netbackup Snapshot Manager 10.0.0.1
Veritas Netbackup Snapshot Manager 10.1
Veritas Netbackup Snapshot Manager 10.1.1
Veritas Netbackup Snapshot Manager 10.2
Veritas Netbackup Snapshot Manager 9.0
Veritas Netbackup Snapshot Manager
NA
CVE-2022-46411
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
NA
CVE-2022-46413
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. Authenticated remote command execution can occur via the management portal.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
NA
CVE-2022-46414
An issue exists in Veritas NetBackup Flex Scale up to and including 3.0 and Access Appliance up to and including 8.0.100. Unauthenticated remote command execution can occur via the management portal.
Veritas Netbackup Flex Scale Appliance
Veritas Access Appliance
NA
CVE-2022-42306
An issue exists in Veritas NetBackup up to and including 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbx_exchange during registration and cause a NULL pointer exception, effectively crashing the pbx_exchange process.
Veritas Netbackup
NA
CVE-2022-42308
An issue exists in Veritas NetBackup up to and including 8.2 and related Veritas products. An attacker with local access can delete arbitrary files by leveraging a path traversal in the pbx_exchange registration code.
Veritas Netbackup
NA
CVE-2022-41320
Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration. This vulnerability could provide a Windows user (who has sufficient privileges) to access a network file system that the...
Veritas System Recovery
NA
CVE-2022-36984
An issue exists in Veritas NetBackup 8.1.x up to and including 8.1.2, 8.2, 8.3.x up to and including 8.3.0.2, 9.x up to and including 9.0.0.1, and 9.1.x up to and including 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could...
Veritas Netbackup 9.1
Veritas Netbackup Appliance 4.0.0.1
Veritas Netbackup Appliance 4.1.0.1
Veritas Flex Appliance 2.0
Veritas Flex Appliance 2.0.1
Veritas Flex Appliance 2.0.2
Veritas Flex Appliance 1.3
Veritas Flex Appliance 2.1
Veritas Netbackup 8.1.1
Veritas Netbackup 8.1.2
Veritas Netbackup 8.2
Veritas Netbackup 9.0
Veritas Netbackup 9.0.0.1
Veritas Netbackup 9.1.0.1
Veritas Netbackup Appliance 3.1.1
Veritas Netbackup Appliance 3.1.2
Veritas Netbackup Appliance 3.2
Veritas Netbackup Appliance 3.3.0.1
Veritas Netbackup Appliance 3.3.0.2
Veritas Flex Appliance 1.2
Veritas Flex Scale 1.3.1
Veritas Flex Scale 2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »