Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Netbackup
(Veritas)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 63 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2023-03-23 | CVE-2023-28758 | An issue was discovered in Veritas NetBackup before 8.3.0.2. BPCD allows an unprivileged user to specify a log file path when executing a NetBackup command. This can be used to overwrite existing NetBackup log files. | Netbackup | 7.1 | ||
2023-03-23 | CVE-2023-28759 | An issue was discovered in Veritas NetBackup before 10.0 on Windows. A vulnerability in the way the client validates the path to a DLL prior to loading may allow a lower-level user to elevate privileges and compromise the system. | Netbackup | 7.8 | ||
2017-03-02 | CVE-2017-6409 | An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interfaces permit inappropriate access. | Netbackup, Netbackup_appliance | 9.8 | ||
2017-03-02 | CVE-2017-6408 | An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects to a socket before permissions are secured. | Netbackup, Netbackup_appliance | 7.0 | ||
2017-03-02 | CVE-2017-6407 | An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client) can occur. | Netbackup, Netbackup_appliance | 8.8 | ||
2017-03-02 | CVE-2017-6406 | An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occur. | Access, Netbackup, Netbackup_appliance | 8.8 | ||
2017-03-02 | CVE-2017-6405 | An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Hostname-based security is open to DNS spoofing. | Netbackup, Netbackup_appliance | 7.5 | ||
2017-03-02 | CVE-2017-6404 | An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data. | Netbackup, Netbackup_appliance | 5.5 | ||
2017-03-02 | CVE-2017-6402 | An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur. | Netbackup, Netbackup_appliance | 6.5 | ||
2017-03-02 | CVE-2017-6401 | An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat. | Netbackup, Netbackup_appliance | 7.8 |