Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

990 matches found

BDU FSTEC
BDU FSTECadded 2024/03/12 12:0 a.m.0 views

The vulnerability of Veritas NetBackup IT Analytics’ data analytics software lies in errors during the verification of cryptographic signatures. This allows attackers to compromise the integrity of the data.

The vulnerability of Veritas NetBackup IT Analytics data analysis software is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...

5.3CVSS0.00055EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTECadded 2024/03/11 12:0 a.m.0 views

Vulnerability of Veritas NetBackup and Veritas NetBackup Appliance software tools for backup and data restoration operations, related to incorrect path name restrictions for access-controlled directories, allows attackers to execute arbitrary code.

The vulnerability of Veritas NetBackup and Veritas NetBackup Appliance software regarding backup and data restoration lies in improper restrictions on the path to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS0.01413EPSS
Exploits0References3Affected Software2
NVD
NVDadded 2024/03/07 7:15 a.m.15 views

CVE-2024-28222

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file...

9.8CVSS9.6AI score0.01413EPSS
Exploits0References1
OSV
OSVadded 2024/03/07 7:15 a.m.1 views

CVE-2024-28222

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file...

9.8CVSS5.8AI score
Exploits0References1
Prion
Prionadded 2024/03/07 7:15 a.m.18 views

Design/Logic Flaw

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file...

7.5CVSS7.5AI score0.01413EPSS
Exploits0References1
CVE
CVEadded 2024/03/07 12:0 a.m.74 views

CVE-2024-28222

CVE-2024-28222 affects Veritas NetBackup prior to 8.1.2 and NetBackup Appliance prior to 3.1.2. The BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file. Impact is impactful: high confidentiality, integrity, and availability r...

9.8CVSS9.4AI score0.01413EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentadded 2024/03/07 12:0 a.m.18 views

CVE-2024-28222

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file...

9.8CVSS7.2AI score0.01413EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/03/07 12:0 a.m.3 views

PT-2024-2014 · Veritas · Veritas Netbackup Appliance +1

Name of the Vulnerable Software and Affected Versions: Veritas NetBackup versions prior to 8.1.2 Veritas NetBackup Appliance versions prior to 3.1.2 Description: The issue is related to inadequate validation of the file path by the BPCD process, allowing an unauthenticated attacker to upload and...

10CVSS7.8AI score0.01413EPSS
Exploits0References14
Cvelist
Cvelistadded 2024/03/07 12:0 a.m.19 views

CVE-2024-28222

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file...

9.8CVSS9.7AI score0.01413EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/03/07 12:0 a.m.2 views

Veritas NetBackup Security Vulnerability

Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies. A security vulnerability exists in Veritas NetBackup versions prior to 8.1.2, and NetBackup versions prior to 3.1.2, which originates from a failure of the BPCD process...

9.8CVSS7.1AI score0.01413EPSS
Exploits0References3
OSV
OSVadded 2023/08/11 5:15 a.m.1 views

CVE-2023-40256

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the...

9.8CVSS5.8AI score0.00182EPSS
Exploits0References1
NVD
NVDadded 2023/08/11 5:15 a.m.12 views

CVE-2023-40256

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the...

9.8CVSS9.4AI score0.00182EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/08/11 5:15 a.m.2 views

CVE-2023-40256

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the...

9.8CVSS5.8AI score0.00182EPSS
Exploits0References2
Prion
Prionadded 2023/08/11 5:15 a.m.16 views

Input validation

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the...

7.5CVSS9.2AI score0.00182EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2023/08/11 12:0 a.m.3 views

Veritas Technologies Veritas NetBackup Trust Management Issues Vulnerabilities

Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies, USA. A security vulnerability exists in Veritas NetBackup Snapshot Manager versions prior to 10.2.0.1 that originates from allowing untrusted clients to interact with t...

9.8CVSS6.7AI score0.00182EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/08/11 12:0 a.m.3 views

PT-2023-8784 · Veritas · Veritas Netbackup Snapshot Manager

Name of the Vulnerable Software and Affected Versions: Veritas NetBackup Snapshot Manager versions prior to 10.2.0.1 Description: A vulnerability in Veritas NetBackup Snapshot Manager is related to errors in the procedure for confirming the authenticity of a certificate. This vulnerability can be...

10CVSS9.2AI score0.00182EPSS
Exploits0References7
Cvelist
Cvelistadded 2023/08/11 12:0 a.m.15 views

CVE-2023-40256

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the...

9.8CVSS9.5AI score0.00182EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/08/11 12:0 a.m.10 views

CVE-2023-40256

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the...

9.8CVSS6.8AI score0.00182EPSS
Exploits0References1
CVE
CVEadded 2023/08/11 12:0 a.m.39 views

CVE-2023-40256

Summary: CVE-2023-40256 affects Veritas NetBackup Snapshot Manager prior to 10.2.0.1. The root cause is misconfiguration leading to improper validation of client certificates in the RabbitMQ service, allowing untrusted clients to interact with RabbitMQ. Impact: confidentiality and integrity of me...

9.8CVSS9.2AI score0.00182EPSS
Exploits0References1Affected Software1
NCSC
NCSCadded 2023/07/27 12:0 a.m.2 views

Vulnerability fixed in Veritas NetBackup Snapshot Manager

Veritas has fixed a vulnerability in NetBackup Snapshot Manager. Due to a flaw in the way client certificates are processed, it is possible for a malicious party to access backups and restores for which the malicious party is not authorized. This allows the malicious party to gain access to...

6.4AI score
Exploits0
Rows per page
Query Builder