990 matches found
CVE-2024-52945
CVE-2024-52945 affects Veritas NetBackup before 10.5 on Windows. The issue arises when a user executes certain NetBackup commands (or is social-engineered to do so), allowing a malicious DLL to load and execute the attacker’s code in the user’s security context. Root cause cited in PT-2024-8334 i...
Veritas NetBackup 安全漏洞
Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies, USA. A security vulnerability exists in Veritas NetBackup versions prior to 10.5 that stems from the fact that if a user executes specific commands or is forced to...
CVE-2024-52945
An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating System. If a user executes specific NetBackup commands or an attacker uses social engineering techniques to impel the user to execute the commands, a malicious DLL...
Veritas NetBackup Privilege Escalation (VTS24-012)
The version of Veritas NetBackup installed on the remote host is 10.0, 10.0.0.1, 10.1, 10.1.1, 10.2, 10.2.0.1, 10.3, 10.3.0.1, 10.4, or 10.4.0.1. It is, therefore, affected by a vulnerability as referenced in the VTS24-012 advisory. - Veritas NetBackup primary server, media server, and clients...
PT-2024-9411 · Veritas · Veritas Netbackup
Name of the Vulnerable Software and Affected Versions: Veritas NetBackup versions prior to 10.5 Description: The issue is related to an uncontrolled search path element in Veritas NetBackup, which can be exploited to elevate privileges and execute arbitrary commands by loading malicious DLL...
PT-2024-8334 · Veritas · Veritas Netbackup
Name of the Vulnerable Software and Affected Versions: Veritas NetBackup versions prior to 10.5 Description: The issue is related to the failure to neutralize special elements used in the operating system command. This could allow a remote attacker to execute arbitrary code if a user loads a...
Veritas NetBackup Improper Access Control (VTS24-004)
The version of Veritas NetBackup installed on the remote host is 9.1.0.1, 10.0, 10.0.0.1, 10.1, 10.1.1, 10.2, 10.2.0.1, 10.3, or 10.3.0.1. It is, therefore, affected by a vulnerability as referenced in the VTS24-004 advisory. - A vulnerability was discovered in the Alta Recovery Vault feature of...
Veritas NetBackup Arbitrary File Delete (VTS24-001)
The Veritas NetBackup application installed on the remote Windows host is prior to 9.1.0.1, 10.0.0.1, 10.1.1, prior to 10.2.0.1, prior to 10.3.0.1 or prior to 10.4. It is, therefore, affected by an arbitrary file delete vulnerability. An issue was discovered in Veritas NetBackup before 10.4. The...
CVE-2024-34404
A vulnerability was discovered in the Alta Recovery Vault feature of Veritas NetBackup before 10.4 and NetBackup Appliance before 5.4. By design, only the cloud administrator should be able to disable the retention lock of Governance mode images. This vulnerability allowed a NetBackup administrat...
CVE-2024-34404
Veritas NetBackup before 10.4 and NetBackup Appliance before 5.4 are affected by CVE-2024-34404 in the Alta Recovery Vault feature. The issue allows a NetBackup administrator, not the cloud administrator, to modify the expiration of backups under Governance mode, bypassing intended retention cont...
CVE-2024-34404
A vulnerability was discovered in the Alta Recovery Vault feature of Veritas NetBackup before 10.4 and NetBackup Appliance before 5.4. By design, only the cloud administrator should be able to disable the retention lock of Governance mode images. This vulnerability allowed a NetBackup administrat...
CVE-2024-34404
A vulnerability was discovered in the Alta Recovery Vault feature of Veritas NetBackup before 10.4 and NetBackup Appliance before 5.4. By design, only the cloud administrator should be able to disable the retention lock of Governance mode images. This vulnerability allowed a NetBackup administrat...
PT-2024-25860 · Veritas · Netbackup Appliance +1
Name of the Vulnerable Software and Affected Versions: Veritas NetBackup versions prior to 10.4 NetBackup Appliance versions prior to 5.4 Description: A vulnerability was discovered in the Alta Recovery Vault feature, allowing a NetBackup administrator to modify the expiration of backups under...
Veritas Technologies Veritas NetBackup 安全漏洞
Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies, USA. A security vulnerability exists in Veritas Technologies Veritas NetBackup versions prior to 10.4 and NetBackup Appliance versions prior to 5.4, which stems from a...
CVE-2024-33672
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform arbitrary file deletion on protected files...
CVE-2024-33672
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform arbitrary file deletion on protected files...
Veritas Technologies Veritas NetBackup 安全漏洞
Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies, USA. A security vulnerability exists in Veritas Technologies Veritas NetBackup versions prior to 10.4, which originates from the ability to perform arbitrary file...
CVE-2024-33672
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform arbitrary file deletion on protected files...
PT-2024-25430
Name of the Vulnerable Software and Affected Versions Veritas NetBackup versions prior to 10.4 Description An issue was discovered in Veritas NetBackup that allows the Multi-Threaded Agent to be used for arbitrary file deletion on protected files. Recommendations For versions prior to 10.4, updat...
The vulnerability of Veritas NetBackup IT Analytics’ data analytics software lies in errors during the verification of cryptographic signatures. This allows attackers to compromise the integrity of the data.
The vulnerability of Veritas NetBackup IT Analytics data analysis software is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...