41 matches found
EUVD-2019-5624
Malware in sbrugna...
EUVD-2019-5621
Malware in sbrugna...
EUVD-2019-5623
Malware in sbrugna...
EUVD-2020-23746
Malware in sbrugna...
EUVD-2019-5622
Malware in sbrugna...
CVE-2019-14415
An issue was discovered in Veritas Resiliency Platform VRP before 3.4 HF1. A persistent cross-site scripting XSS vulnerability allows a malicious VRP user to inject malicious script into another user's browser, related to resiliency plans functionality. A victim must open a resiliency plan that a...
CVE-2019-14417
An issue was discovered in Veritas Resiliency Platform VRP before 3.4 HF1. An arbitrary command execution vulnerability allows a malicious VRP user to execute commands with root privilege within the VRP virtual machine, related to DNS functionality...
CVE-2019-14418
An issue was discovered in Veritas Resiliency Platform VRP before 3.4 HF1. When uploading an application bundle, a directory traversal vulnerability allows a VRP user with sufficient privileges to overwrite any file in the VRP virtual machine. A malicious VRP user could use this to replace existi...
CVE-2019-14416
An issue was discovered in Veritas Resiliency Platform VRP before 3.4 HF1. An arbitrary command execution vulnerability allows a malicious VRP user to execute commands with root privilege within the VRP virtual machine, related to resiliency plans and custom script functionality...
CVE-2020-36168
An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...
Veritas Resiliency Platform Code Execution Vulnerability
Veritas Technologies Resiliency Platform VRP is a suite of data protection solutions from Veritas Technologies, USA. A security vulnerability exists in Veritas Resiliency Platform versions 3.4 and 3.5, which can be exploited by an attacker to gain administrator access to the system, resulting in...
CVE-2020-36168
An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...
CVE-2020-36168
An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...
CVE-2020-36168
An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...
Default configuration
An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...
CVE-2020-36168
An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...
CVE-2020-36168
CVE-2020-36168 affects Veritas Resiliency Platform 3.4 and 3.5 on Windows with the Managed Host addon. At startup, the OpenSSL library is loaded and may search for openssl.cnf; since the file may be absent, a low-privileged user can place a malicious openssl.cnf at C:\usr\local\ssl\openssl.cnf. T...
Veritas Resiliency Platform 安全漏洞
Veritas Technologies Resiliency Platform VRP is a suite of data protection solutions from Veritas Technologies, USA. A security vulnerability exists in Veritas Resiliency Platform versions 3.4 and 3.5, which can be exploited by an attacker to gain administrator access to the system, resulting in...
CVE-2019-14417
An issue was discovered in Veritas Resiliency Platform VRP before 3.4 HF1. An arbitrary command execution vulnerability allows a malicious VRP user to execute commands with root privilege within the VRP virtual machine, related to DNS functionality...
CVE-2019-14417
An issue was discovered in Veritas Resiliency Platform VRP before 3.4 HF1. An arbitrary command execution vulnerability allows a malicious VRP user to execute commands with root privilege within the VRP virtual machine, related to DNS functionality...