EUVD-2025-210075

In a CVX cluster, an EOS switch connected to a CVX server is not resilient to certain malformed messages received from the connected CVX server. Similarly, the CVX server is not resilient to certain malformed messages received from the connected EOS switch. This leads to either a Sysdb agent cras...

EUVD-2001-0287

Malware in sbrugna...

EUVD-2002-1796

Malware in sbrugna...

EUVD-2005-3565

Malware in sbrugna...

EUVD-2004-2197

Malware in sbrugna...

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via the project details API endpoint. An attacker can access sensitive repository credentials by using API tokens with project-level or project get permissions,...

Microsoft Windows Cluster Server 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows Cluster Server. An attacker exploiting this vulnerability could remotely execute code. The following products and...

The vulnerability of the Veritas InfoScale backup and data storage application, the Veritas Access data storage system, and the Veritas Cluster Server (VCS) application for clustering open systems lies in the absence of measures to clean incoming data. This allows a malicious actor to execute arbitrary commands.

The vulnerability of the Veritas InfoScale backup and data storage application, the Veritas Access data storage system, and the Veritas Cluster Server VCS for clustering open systems is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote...

CVE-2019-18780

An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote attacker to execute arbitrary commands as root or administrator. These Veritas products are affected: Access 7.4.2 and earlier, Access Appliance 7.4.2 and earlier, Fl...

CVE-2019-18780

An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote attacker to execute arbitrary commands as root or administrator. These Veritas products are affected: Access 7.4.2 and earlier, Access Appliance 7.4.2 and earlier, Fl...

Command injection

An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote attacker to execute arbitrary commands as root or administrator. These Veritas products are affected: Access 7.4.2 and earlier, Access Appliance 7.4.2 and earlier, Fl...

CVE-2019-18780

An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote attacker to execute arbitrary commands as root or administrator. These Veritas products are affected: Access 7.4.2 and earlier, Access Appliance 7.4.2 and earlier, Fl...

CVE-2019-18780

CVE-2019-18780 is an arbitrary command-injection vulnerability in the Veritas InfoScale Cluster Server component. An unauthenticated remote attacker could execute arbitrary commands as root/administrator. Affected products include Veritas Access (7.4.2 and earlier), Access Appliance (7.4.2 and ea...

CVE-2005-3566

Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18NLANG environment variable to 1 haagent, 2 haalert, 3 haattr, 4 hacli, 5 hacliruncmd, 6 haclus, 7 haconf, 8 hadebug, 9 hagrp, 10 hahb, 11 halog, 12...

CVE-2005-3566

CVE-2005-3566 affects VERITAS Cluster Server for UNIX prior to 4.0MP2. It describes a buffer overflow via a long VCSI18N_LANG environment variable that can allow a local user to execute arbitrary code through multiple ha commands (haagent, haalert, haattr, hacli, hacli_runcmd, haclus, haconf, had...

CVE-2005-3566

Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18NLANG environment variable to 1 haagent, 2 haalert, 3 haattr, 4 hacli, 5 hacliruncmd, 6 haclus, 7 haconf, 8 hadebug, 9 hagrp, 10 hahb, 11 halog, 12...

VERITAS Cluster Server for UNIX buffer overflow

Buffer overflow in 'ha' suid utility on environment variables parsing...

[SA17502] VERITAS Cluster Server for UNIX Buffer Overflow Vulnerability

TITLE: VERITAS Cluster Server for UNIX Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA17502 VERIFY ADVISORY: http://secunia.com/advisories/17502/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: VERITAS Storage Foundation Cluster File System 4.x...

CVE-2004-2205

Technical details about CVE-2004-2205 are not available in the provided documents; no affected products, root cause, or remediation are disclosed here. Monitor for updates.

CVE-2004-2205

Unknown vulnerability in Veritas Cluster Server 1.0.1 through 4.0 allows local users to gain root access via unspecified vectors...