Lucene search
+L

76 matches found

OSV
OSV
added 2023/07/15 11:15 p.m.10 views

PYSEC-2023-312

Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command specifically, a SET command. NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this...

5.9CVSS7.4AI score
Exploits0References4
OSV
OSV
added 2023/07/15 11:15 p.m.5 views

UBUNTU-CVE-2021-31294

Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command specifically, a SET command. NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this...

5.9CVSS7.3AI score0.01309EPSS
Exploits1References5
Cvelist
Cvelist
added 2023/07/15 12:0 a.m.33 views

CVE-2021-31294

Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command specifically, a SET command. NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this...

6.5AI score0.01309EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/07/15 12:0 a.m.20 views

CVE-2021-31294

Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command specifically, a SET command. NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this...

7AI score0.01309EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2023/07/15 12:0 a.m.28 views

CVE-2021-31294

Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command specifically, a SET command. NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this...

5.9CVSS6.3AI score0.01309EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 4:59 a.m.5 views

SUSE CVE-2016-6170

ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service secondary DNS server crash via a large AXFR response, and possibly allows IXFR servers to cause a denial of service IXFR client crash via a large IXFR response...

6.5CVSS6.8AI score0.40536EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2022/10/03 3:15 p.m.4 views

CVE-2022-42307

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity XXE Injection attack through the DiscoveryService service...

9.8CVSS5.8AI score0.00531EPSS
Exploits0References2
OSV
OSV
added 2022/10/03 3:15 p.m.6 views

CVE-2022-42307

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity XXE Injection attack through the DiscoveryService service...

9.8CVSS5.8AI score0.00531EPSS
Exploits0References1
NVD
NVD
added 2022/10/03 3:15 p.m.14 views

CVE-2022-42304

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting idm, nbars, and SLP manager code...

9.8CVSS0.00511EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/03 3:15 p.m.11 views

CVE-2022-42305

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to a Path traversal attack through the DiscoveryService service...

7.5CVSS5.8AI score0.00572EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/10/03 3:15 p.m.4 views

CVE-2022-42304

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting idm, nbars, and SLP manager code...

9.8CVSS5.9AI score0.00511EPSS
Exploits0References2
OSV
OSV
added 2022/10/03 3:15 p.m.4 views

CVE-2022-42300

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server nbars process can be crashed resulting in a denial of service. Note: the watchdog service will automatically restart the process...

6.5CVSS5.8AI score0.00612EPSS
Exploits0References1
OSV
OSV
added 2022/10/03 3:15 p.m.4 views

CVE-2022-42301

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity XXE injection attack through the nbars process...

8.8CVSS5.8AI score0.00555EPSS
Exploits0References1
OSV
OSV
added 2022/10/03 3:15 p.m.6 views

CVE-2022-42302

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting the NBFSMCLIENT service...

9.8CVSS5.8AI score0.00529EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/03 12:0 a.m.7 views

PT-2022-26358 · Veritas · Netbackup

Name of the Vulnerable Software and Affected Versions: Veritas NetBackup versions prior to 10.0 Description: A second-order SQL Injection attack can be leveraged against the NBFSMCLIENT service of the NetBackup Primary server. Recommendations: For versions prior to 10.0, update to version 10.0 or...

9.8CVSS9.9AI score0.00511EPSS
Exploits0References2
OSV
OSV
added 2022/07/28 1:15 a.m.5 views

CVE-2022-36993

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. An attacker with authenticated access to a NetBackup Client could remotely execute arbitrary commands on a NetBackup Primary...

8.8CVSS6AI score0.009EPSS
Exploits0References1
OSV
OSV
added 2022/07/28 1:15 a.m.5 views

CVE-2022-36998

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. An attacker with authenticated access to a NetBackup Client could remotely trigger a stack-based buffer overflow on the...

6.5CVSS6.2AI score0.00579EPSS
Exploits0References1
OSV
OSV
added 2022/07/28 1:15 a.m.5 views

CVE-2022-37000

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. Under certain conditions, an attacker with authenticated access to a NetBackup Client could remotely read files on a NetBack...

6.5CVSS5.8AI score0.00597EPSS
Exploits0References1
OSV
OSV
added 2022/07/28 1:15 a.m.9 views

CVE-2022-36999

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. Under certain conditions, an attacker with authenticated access to a NetBackup Client could remotely read files on a NetBack...

6.5CVSS5.8AI score0.00597EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/28 1:15 a.m.3 views

CVE-2022-36995

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. An attacker with authenticated access to a NetBackup Client could arbitrarily create directories on a NetBackup Primary serv...

4.3CVSS5.8AI score0.00445EPSS
Exploits0References2
Rows per page
Query Builder