Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
veritas netbackup vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2019-9868
An issue exists in the Web Console in Veritas NetBackup Appliance up to and including 3.1.2. The SMTP password is displayed to an administrator.
Veritas Netbackup Appliance
356
VMScore
CVE-2019-9867
An issue exists in the Web Console in Veritas NetBackup Appliance up to and including 3.1.2. The proxy server password is displayed to an administrator.
Veritas Netbackup Appliance
356
VMScore
CVE-2017-6402
An issue exists in Veritas NetBackup 8.0 and previous versions and NetBackup Appliance 3.0 and previous versions. Denial of service affecting NetBackup server can occur.
Veritas Netbackup
Veritas Netbackup Appliance
312
VMScore
CVE-2021-41570
Veritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup Master Server Name, Display Name, NetBackup User Name, or NetBackup Password field during a Settings/Configuration Add operation.
Veritas Netbackup 9.1
Veritas Netbackup
187
VMScore
CVE-2017-15517
AltaVault OST Plug-in versions before 1.2.2 may allow malicious users to obtain sensitive information via unspecified vectors. All users are urged to move to a fixed version and change passwords used by Veritas NetBackup to access the OST shares on the NetApp AltaVault as a preca...
Netapp Altavault Ost Plug-in
187
VMScore
CVE-2017-6404
An issue exists in Veritas NetBackup prior to 7.7 and NetBackup Appliance prior to 2.7. There are world-writable log files, allowing destruction or spoofing of log data.
Veritas Netbackup Appliance
Veritas Netbackup
NA
CVE-2024-34404
A vulnerability exists in the Alta Recovery Vault feature of Veritas NetBackup prior to 10.4 and NetBackup Appliance prior to 5.4. By design, only the cloud administrator should be able to disable the retention lock of Governance mode images. This vulnerability allowed a NetBacku...
NA
CVE-2024-33672
An issue exists in Veritas NetBackup prior to 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform arbitrary file deletion on protected files.
NA
CVE-2024-28222
In Veritas NetBackup prior to 8.1.2 and NetBackup Appliance prior to 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated malicious user to upload and execute a custom file.
1 Github repository
NA
CVE-2023-40256
A vulnerability exists in Veritas NetBackup Snapshot Manager prior to 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this i...
Veritas Netbackup Snapshot Manager 9.1
Veritas Netbackup Snapshot Manager 9.1.0.1
Veritas Netbackup Snapshot Manager 10.0
Veritas Netbackup Snapshot Manager 10.0.0.1
Veritas Netbackup Snapshot Manager 10.1
Veritas Netbackup Snapshot Manager 10.1.1
Veritas Netbackup Snapshot Manager 10.2
Veritas Netbackup Snapshot Manager 9.0
Veritas Netbackup Snapshot Manager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »