An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote malicious user to execute arbitrary commands as root or administrator. These Veritas products are affected: Access 7.4.2 and previous versions, Access Appliance 7.4.2 and previous versions, Flex Appliance 1.2 and previous versions, InfoScale 7.3.1 and previous versions, InfoScale between 7.4.0 and 7.4.1, Veritas Cluster Server (VCS) 6.2.1 and previous versions on Linux/UNIX, Veritas Cluster Server (VCS) 6.1 and previous versions on Windows, Storage Foundation HA (SFHA) 6.2.1 and previous versions on Linux/UNIX, and Storage Foundation HA (SFHA) 6.1 and previous versions on Windows.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
veritas access |
||
veritas access appliance |
||
veritas flex appliance |
||
veritas infoscale |
||
veritas cluster_server |
||
veritas storage_foundation_ha |