An issue exists in Veritas Resiliency Platform (VRP) prior to 3.4 HF1. When uploading an application bundle, a directory traversal vulnerability allows a VRP user with sufficient privileges to overwrite any file in the VRP virtual machine. A malicious VRP user could use this to replace existing files to take control of the VRP virtual machine.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
veritas resiliency platform 2.2 |
||
veritas resiliency platform 3.3 |
||
veritas resiliency platform 3.3.1 |
||
veritas resiliency platform 3.2 |
||
veritas resiliency platform 3.1 |
||
veritas resiliency platform 3.0 |
||
veritas resiliency platform 2.1 |
||
veritas resiliency platform 2.0 |
||
veritas resiliency platform 1.2 |
||
veritas resiliency platform 3.3.2 |
Vulmon