Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbackup vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-42308
An issue exists in Veritas NetBackup up to and including 8.2 and related Veritas products. An attacker with local access can delete arbitrary files by leveraging a path traversal in the pbx_exchange registration code.
Veritas Netbackup
NA
CVE-2022-42302
An issue exists in Veritas NetBackup up to and including 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting the NBFSMCLIENT service.
Veritas Netbackup
NA
CVE-2023-28758
An issue exists in Veritas NetBackup prior to 8.3.0.2. BPCD allows an unprivileged user to specify a log file path when executing a NetBackup command. This can be used to overwrite existing NetBackup log files.
Veritas Netbackup
NA
CVE-2023-28759
An issue exists in Veritas NetBackup prior to 10.0 on Windows. A vulnerability in the way the client validates the path to a DLL prior to loading may allow a lower-level user to elevate privileges and compromise the system.
Veritas Netbackup
NA
CVE-2023-28818
An issue exists in Veritas NetBackup IT Analytics 11 prior to 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files (apta...
Veritas Netbackup It Analytics 11.1.00
Veritas Netbackup It Analytics 11.0.00
Veritas Aptare It Analytics
9
CVSSv2
CVE-2018-18652
A remote command execution vulnerability in Veritas NetBackup Appliance prior to 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.
Veritas Netbackup Appliance
4
CVSSv2
CVE-2019-9867
An issue exists in the Web Console in Veritas NetBackup Appliance up to and including 3.1.2. The proxy server password is displayed to an administrator.
Veritas Netbackup Appliance
4
CVSSv2
CVE-2019-9868
An issue exists in the Web Console in Veritas NetBackup Appliance up to and including 3.1.2. The SMTP password is displayed to an administrator.
Veritas Netbackup Appliance
3.5
CVSSv2
CVE-2015-6549
Cross-site scripting (XSS) vulnerability in an application console in the server in Symantec NetBackup OpsCenter prior to 7.7.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Symantec Netbackup Opscenter
6.7
CVSSv2
CVE-2013-1608
Directory traversal vulnerability in the Management Console on the Symantec NetBackup (NBU) appliance 2.0.x allows remote malicious users to read arbitrary files via unspecified vectors.
Symantec Netbackup Appliance 2.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »