Veritas NetBackup Appliance 3.0

CPE Details

Veritas NetBackup Appliance 3.0
veritas
netbackup_appliance
3.0
2017-03-02
15h01 +00:00
2021-06-02
09h37 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:veritas:netbackup_appliance:3.0:*:*:*:*:*:*:*

Informations

Vendor

veritas

Product

netbackup_appliance

Version

3.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-28222 2024-03-06 23h00 +00:00 In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file.
9.8
Critical
CVE-2019-9868 2019-03-19 14h54 +00:00 An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The SMTP password is displayed to an administrator.
7.2
High
CVE-2019-9867 2019-03-19 14h53 +00:00 An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The proxy server password is displayed to an administrator.
7.2
High
CVE-2018-18652 2018-10-25 21h00 +00:00 A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.
7.2
High
CVE-2017-8856 2017-05-09 19h00 +00:00 In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
9.8
Critical
CVE-2017-8857 2017-05-09 19h00 +00:00 In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process.
9.8
Critical
CVE-2017-8858 2017-05-09 19h00 +00:00 In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process.
9.8
Critical
CVE-2017-8859 2017-05-09 19h00 +00:00 In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary commands as root.
9.8
Critical
CVE-2017-6401 2017-03-02 05h00 +00:00 An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat.
7.8
High
CVE-2017-6402 2017-03-02 05h00 +00:00 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur.
6.5
Medium
CVE-2017-6403 2017-03-02 05h00 +00:00 An issue was discovered in Veritas NetBackup Before 8.0 and NetBackup Appliance Before 3.0. NetBackup Cloud Storage Service uses a hardcoded username and password.
9.8
Critical
CVE-2017-6405 2017-03-02 05h00 +00:00 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Hostname-based security is open to DNS spoofing.
7.5
High
CVE-2017-6408 2017-03-02 05h00 +00:00 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects to a socket before permissions are secured.
7
High
CVE-2017-6409 2017-03-02 05h00 +00:00 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interfaces permit inappropriate access.
9.8
Critical