Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
veritas access vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2022-26484
An issue exists in Veritas InfoScale Operations Manager (VIOM) prior to 7.4.2 Patch 600 and 8.x prior to 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the sy...
Veritas Infoscale Operations Manager
Veritas Infoscale Operations Manager 8.0.0
7.2
CVSSv2
CVE-2020-36165
An issue exists in Veritas Desktop and Laptop Option (DLO) prior to 9.4. On start-up, it loads the OpenSSL library from /ReleaseX64/ssl. This library attempts to load the /ReleaseX64/ssl/openssl.cnf configuration file, which does not exist. By default, on Windows systems, users c...
Veritas Desktop And Laptop Option
5
CVSSv2
CVE-2020-12876
Veritas APTARE versions before 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.
Veritas Aptare
7.2
CVSSv2
CVE-2020-36164
An issue exists in Veritas Enterprise Vault up to and including 14.0. On start-up, it loads the OpenSSL library. The OpenSSL library then attempts to load the openssl.cnf configuration file (which does not exist) at the following locations in both the System drive (typically C:\)...
Veritas Enterprise Vault
6.5
CVSSv2
CVE-2020-12875
Veritas APTARE versions before 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.
Veritas Aptare
NA
CVE-2022-42308
An issue exists in Veritas NetBackup up to and including 8.2 and related Veritas products. An attacker with local access can delete arbitrary files by leveraging a path traversal in the pbx_exchange registration code.
Veritas Netbackup
NA
CVE-2022-42306
An issue exists in Veritas NetBackup up to and including 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbx_exchange during registration and cause a NULL pointer exception, effectively crashing the pbx_exchange process.
Veritas Netbackup
7.2
CVSSv2
CVE-2020-36160
An issue exists in Veritas System Recovery prior to 21.2. On start-up, it loads the OpenSSL library from \usr\local\ssl. This library attempts to load the from \usr\local\ssl\openssl.cnf configuration file, which does not exist. By default, on Windows systems, users can create di...
Veritas System Recovery
6.8
CVSSv2
CVE-2020-27157
Veritas APTARE versions before 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the ta...
Veritas Aptare
NA
CVE-2022-41320
Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration. This vulnerability could provide a Windows user (who has sufficient privileges) to access a network file system that the...
Veritas System Recovery
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »