CVE-2018-18652

A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input...

CVE-2018-18652

A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input...

CVE-2018-18652

The CVE-2018-18652 entry concerns Veritas NetBackup Appliance prior to 3.1.2. It describes a remote command execution vulnerability caused by insufficient filtering of user-provided input, permitting authenticated administrators to execute arbitrary commands as root. The connected sources substan...

The vulnerability of the Veritas Access data storage system and its backup/restore software, Veritas NetBackup and Veritas NetBackup Appliance, is related to privilege division errors. This vulnerability allows an attacker to execute arbitrary commands on the NetBackup server or client with root/admin privileges.

The vulnerability of the Veritas Storage System and the software tools for backup and data recovery, such as Veritas NetBackup and Veritas NetBackup Appliance, is related to privilege division errors. Exploiting this vulnerability could allow an attacker to execute arbitrary commands on the...

The vulnerability of the Veritas Access data storage system and the software tools for backup and data recovery, namely Veritas NetBackup and Veritas NetBackup Appliance, stems from insufficient restrictions on the execution of authorized user commands. This allows attackers to execute arbitrary privileged commands.

The vulnerability of the Veritas Access data storage system and the NetBackup and NetBackup Appliance backup and recovery software lies in the insufficient restrictions on the execution of authorized user commands. Exploiting this vulnerability allows an attacker to execute arbitrary privileged...

The vulnerability of the Veritas Access data storage system and its backup/restore software, Veritas NetBackup and Veritas NetBackup Appliance, is related to privilege division errors. This vulnerability allows an attacker to execute commands with root/admin privileges.

The vulnerability of the Veritas Access data storage system, as well as the software tools for backup and recovery with Veritas NetBackup and Veritas NetBackup Appliance, is related to privilege division errors. Exploiting this vulnerability could allow an attacker to execute commands on the...

The vulnerability of the “scripts/license.pl” script in the Veritas NetBackup Appliance backup solution allows a perpetrator to execute arbitrary commands.

The vulnerability of the “scripts/license.pl” script in the Veritas NetBackup Appliance backup solution is related to the lack of measures taken at the control level to clean data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using the “hostName” parameter ...

Veritas NetBackup Appliance < 2.7.2 / 3.1.0 Multiple Vulnerabilities (VTS17-003)

According to its self-reported version, the remote Veritas NetBackup Appliance is 2.7.x or 3.0.x. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid104888;...

CVE-2017-15517

AltaVault OST Plug-in versions prior to 1.2.2 may allow attackers to obtain sensitive information via unspecified vectors. All users are urged to move to a fixed version and change passwords used by Veritas NetBackup to access the OST shares on the NetApp AltaVault as a precaution...

Information disclosure

AltaVault OST Plug-in versions prior to 1.2.2 may allow attackers to obtain sensitive information via unspecified vectors. All users are urged to move to a fixed version and change passwords used by Veritas NetBackup to access the OST shares on the NetApp AltaVault as a precaution...

CVE-2017-15517

AltaVault OST Plug-in versions prior to 1.2.2 may allow attackers to obtain sensitive information via unspecified vectors. All users are urged to move to a fixed version and change passwords used by Veritas NetBackup to access the OST shares on the NetApp AltaVault as a precaution...

CVE-2017-15517

CVE-2017-15517 affects the NetApp AltaVault OST Plug-in (versions prior to 1.2.2). The vulnerability enables a local attacker to obtain sensitive information via unspecified vectors, resulting in partial confidentiality impact (no integrity/availability impact stated). The fixed version is 1.2.2 ...

CVE-2017-15517

AltaVault OST Plug-in versions prior to 1.2.2 may allow attackers to obtain sensitive information via unspecified vectors. All users are urged to move to a fixed version and change passwords used by Veritas NetBackup to access the OST shares on the NetApp AltaVault as a precaution...

The vulnerability of NetBackup Appliance’s backup and recovery software lies in the lack of measures taken to sanitize input data. This allows attackers to execute arbitrary commands with root privileges.

The vulnerability of NetBackup Appliance’s backup and recovery software lies in the lack of measures for cleaning input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges remotely...

The vulnerability of software tools for backup and data restoration in NetBackup Appliance and NetBackup, related to lack of access control, allows attackers to perform file writing in a privileged mode.

The vulnerability of software tools for backup and data restoration in NetBackup Appliance and NetBackup is related to lack of access control. Exploiting this vulnerability allows a malicious actor to perform file writing in a privileged mode, using the “bprd” process...

The vulnerability of software tools for backup and data restoration in NetBackup Appliance and NetBackup, related to lack of access control, allows attackers to perform file writing in a privileged mode.

The vulnerability of software tools for backup and data restoration in NetBackup Appliance and NetBackup is related to lack of access control. Exploiting this vulnerability allows a malicious actor to perform file writing in a privileged mode, using the “bprd” process...

The vulnerability of the software tools for backup and data restoration in NetBackup Appliance and NetBackup allows a malicious individual to execute arbitrary commands in a privileged mode. This vulnerability is related to deficiencies in access control.

The vulnerability of software tools for backup and data restoration in NetBackup Appliance and NetBackup lies in the lack of access control mechanisms root/admin privileges. Exploiting this vulnerability allows a malicious actor to remotely copy any file and execute arbitrary commands with...

Veritas NetBackup 7.7.x / 8.0.x Multiple Vulnerabilities (VTS17-004)

The Veritas NetBackup application installed on the remote Windows host is 7.7.x or 8.0.x and may be missing a vendor-supplied security hotfix. It is, therefore, affected by multiple vulnerabilities : - A remote command execution vulnerability exists in the bprd process due to improper directory...

Veritas NetBackup Appliance 2.7.x / 3.0.x Remote Command Execution (VTS17-005)

According to its self-reported version, the remote Veritas NetBackup Appliance is 2.7.x or 3.0.x, and may be missing a vendor-supplied security patch. It is, therefore, affected by a remote command execution vulnerability due to improper validation of user-supplied input. An unauthenticated, remo...

Veritas Netbackup Arbitrary Command Execution Vulnerability

Veritas NetBackup simultaneously simplifies the deployment and maintenance of data protection environments with a turnkey solution that is ideal for data centers, remote offices and virtual environments. A remote arbitrary command execution vulnerability exists in the Veritas NetBackup Appliance...