Lucene search
K

278 matches found

BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.9 views

The vulnerability of the NVBUBackup TimeRange request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup TimeRange request handler in the NetVault Backup software for data archiving and restoration is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.5 views

The vulnerability of the NVBUBackup ClientList request processor in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup ClientList request processor in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.9 views

The vulnerability of the NVBUBackupOptionSet Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUBackupOptionSet Get request handler in the NetVault Backup data archiving and restoration software lies in the insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.13 views

The vulnerability of the NVBUBackupSegment Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUBackupSegment Get request handler in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9.8CVSS6AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.5 views

The vulnerability of the NVBUJobHistory Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUJobHistory Get request handler in the NetVault Backup software for data archiving and restoration is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.8 views

The vulnerability of the NVBUJobDefinition Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUJobDefinition Get request handler in the NetVault Backup data archiving and restoration software lies in the insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code...

9.8CVSS6AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.7 views

The vulnerability of the NVBUBackup PluginList request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup PluginList request processor in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.8 views

The vulnerability of the NVBUBackup Count request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup Count request handler in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9.8CVSS6AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.8 views

The vulnerability of the request handler of the NVBUSourceDeviceSet Get function in the software for data archiving and restoration by NetVault Backup allows a attacker to execute arbitrary code.

The vulnerability of the NVBUSourceDeviceSet Get request handler in software for data archiving and restoration in NetVault Backup is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9.8CVSS6AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.8 views

The vulnerability of the NVBUScheduleSet request handler in the software for data archiving and restoration by NetVault Backup allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUScheduleSet request handler in software for data archiving and restoration by NetVault Backup is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/16 12:0 a.m.6 views

The vulnerability of NetVault Backup’s software for data archiving and restoration lies in its insufficient access control. This allows attackers to bypass authentication procedures and elevate their privileges to system-level levels.

The vulnerability of NetVault Backup’s data archiving and restoration software is related to improper access control. Exploiting this vulnerability allows a malicious actor to bypass authentication procedures and elevate privileges to system-level levels by using a specially crafted parameter...

10CVSS5.5AI score0.16331EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/03/16 12:0 a.m.5 views

The vulnerability of the executable file nvwsworker.exe in the NetVault Backup data archiving and restoration software allows a perpetrator to execute arbitrary code.

The vulnerability of the nvwsworker.exe executable software for NetVault Backup data archiving and restoration lies in the improper validation of the length of input data. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code with system privileges by...

10CVSS6AI score0.67218EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/02/09 12:0 a.m.4 views

Quest NetVault Backup Denial of Service Vulnerability

Quest NetVault Backup is a scalable data backup and recovery solution for organizations with multiple IT environments. A denial of service vulnerability exists in the handling of Export requests in Quest NetVault Backup 11.2.0.13. The vulnerability arises due to a failure to properly validate a...

8.5CVSS6.8AI score0.05029EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/09 12:0 a.m.7 views

Quest NetVault Backup checksession authentication bypass vulnerability

Quest NetVault Backup is a scalable data backup and recovery solution for organizations with multiple IT environments. A checksession authentication bypass vulnerability exists in JSON RPC Request handling in Quest NetVault Backup 11.2.0.13. An attacker can exploit this vulnerability to execute...

10CVSS8AI score0.16331EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/09 12:0 a.m.5 views

Quest NetVault Backup Arbitrary Code Execution Vulnerability

Quest NetVault Backup is a scalable data backup and recovery solution for organizations with multiple IT environments. An arbitrary code execution vulnerability exists in nvwsworker.exe in Quest NetVault Backup 11.2.0.13. The vulnerability arises because when parsing the boundary header of a...

10CVSS8.1AI score0.67218EPSS
Exploits0References1
OSV
OSV
added 2018/02/08 6:29 p.m.5 views

CVE-2017-17657

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUBackup TimeRange method requests. The issue result...

9.8CVSS6.2AI score0.03933EPSS
Exploits0References1
NVD
NVD
added 2018/02/08 6:29 p.m.16 views

CVE-2017-17658

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUJobDefinitions Get method requests. The issue...

9.8CVSS9.7AI score0.03933EPSS
Exploits0References1
OSV
OSV
added 2018/02/08 6:29 p.m.4 views

CVE-2017-17659

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUJobHistory Get method requests. The issue results...

9.8CVSS6.2AI score0.03933EPSS
Exploits0References1
NVD
NVD
added 2018/02/08 6:29 p.m.20 views

CVE-2018-1163

This vulnerability allows remote attackers to bypass authentication on vulnerable installations of Quest NetVault Backup 11.2.0.13. The specific flaw exists within JSON RPC Request handling. By setting the checksession parameter to a specific value, it is possible to bypass authentication to...

10CVSS9.8AI score0.16331EPSS
Exploits0References1
OSV
OSV
added 2018/02/08 6:29 p.m.7 views

CVE-2018-1163

This vulnerability allows remote attackers to bypass authentication on vulnerable installations of Quest NetVault Backup 11.2.0.13. The specific flaw exists within JSON RPC Request handling. By setting the checksession parameter to a specific value, it is possible to bypass authentication to...

9.8CVSS5.6AI score0.16331EPSS
Exploits0References1
Rows per page
Query Builder