Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.
9.8CVSS
9.6AI Score
0.004EPSS
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.
6.3CVSS
6.2AI Score
0.001EPSS
Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.
7.5CVSS
7.4AI Score
0.009EPSS
Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.
7.5CVSS
7.2AI Score
0.002EPSS
Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerability could allow for remote code execution by an unauthenticated user.
9.8CVSS
9.7AI Score
0.006EPSS
Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the targeted user accou...
8.1CVSS
8.3AI Score
0.003EPSS