18 matches found
EUVD-2020-26993
Malware in sbrugna...
EUVD-2023-32453
Malicious code in bioql PyPI...
CVE-2023-28818
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...
CVE-2020-5838
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting XSS exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users...
The vulnerability of Veritas NetBackup IT Analytics’ data analytics software lies in errors during the verification of cryptographic signatures. This allows attackers to compromise the integrity of the data.
The vulnerability of Veritas NetBackup IT Analytics data analysis software is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...
CVE-2023-28818
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...
Design/Logic Flaw
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...
CVE-2023-28818
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...
PT-2023-8787 · Veritas · Veritas Netbackup It Analytics
Name of the Vulnerable Software and Affected Versions: Veritas NetBackup IT Analytics versions prior to 11.2.0 Description: The issue is related to errors in cryptographic signature verification, which could allow a remote attacker to compromise data integrity. A malicious actor could exploit the...
CVE-2023-28818
CVE-2023-28818 affects Veritas NetBackup IT Analytics 11.x prior to 11.2.0. The upgrade process permits unsigned files, enabling a attacker to install rogue Collector executables (aptare.jar or upgrademanager.zip) on the Portal server, which could be downloaded and installed on collectors, compro...
Veritas Technologies Veritas NetBackup 数据伪造问题漏洞
Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies, USA. A security vulnerability exists in Veritas Technologies Veritas NetBackup IT Analytics version 11 prior to 11.2.0, which stems from an application upgrade process...
CVE-2023-28818
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...
CVE-2020-5838
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting XSS exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users...
CVE-2020-5838
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting XSS exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users...
Cross site scripting
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting XSS exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users...
CVE-2020-5838
Symantec IT Analytics is affected by CVE-2020-5838: prior to version 2.9.1, it may be susceptible to a cross-site scripting (XSS) vulnerability enabling attacker-injected client-side scripts in pages viewed by other users. Remediation per the connected docs is to upgrade to 2.9.1; no explicit exp...
CVE-2020-5838
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting XSS exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users...
IT Analytics XSS
Summary Symantec has released an update to address an issue that was discovered in the IT Analytics product. Affected Products IT Analytics --- CVE | Affected Versions | Remediation CVE-2020-5838 | Prior to 2.9.1 | Upgrade to 2.9.1 Issue Details CVE-2020-5838 --- Severity/CVSSv3: | Medium / 4.3...