Enterprise Vault Security Vulnerabilities and Issues — Enterprise Vault CVE List

Lucene search

VeritasEnterprise Vault

10 matches found

CVE•added 2024/11/24 9:15 p.m.•53 views

CVE-2024-53914

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/18 6:15 a.m.•51 views

CVE-2024-52943

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24697. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user w...

5.4CVSS5.9AI score0.00085EPSS

CVE•added 2024/11/24 9:15 p.m.•51 views

CVE-2024-53912

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/24 9:15 p.m.•50 views

CVE-2024-53915

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/24 9:15 p.m.•49 views

CVE-2024-53910

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/24 9:15 p.m.•49 views

CVE-2024-53911

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/24 9:15 p.m.•46 views

CVE-2024-53913

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/24 9:15 p.m.•45 views

CVE-2024-53909

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

9.8CVSS8AI score0.01579EPSS

CVE•added 2024/11/18 6:15 a.m.•42 views

CVE-2024-52942

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24696. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user w...

5.4CVSS5.9AI score0.0006EPSS

CVE•added 2024/11/18 6:15 a.m.•38 views

CVE-2024-52944

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24698. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting while viewing archived content. This could reflect back to an authenticated user without...

5.4CVSS6.3AI score0.0006EPSS