cbcvebase.

Quest Netvault Backup vulnerabilities

24 known vulnerabilities affecting quest/quest_netvault_backup.

Total CVEs
24
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL23HIGH1

Vulnerabilities

Page 2 of 2
CVE-2017-17416P2CRITICALCVSS 9.8v11.3.0.122018-02-08
CVE-2017-17416 [CRITICAL] CWE-89 CVE-2017-17416: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUPhaseStatus GetPlugins method requests. The issue results from the lack of proper validation of a user-s
nvd
CVE-2017-17658P2CRITICALCVSS 9.8v11.3.0.122018-02-08
CVE-2017-17658 [CRITICAL] CWE-89 CVE-2017-17658: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUJobDefinitions Get method requests. The issue results from the lack of proper validation of a user-suppl
nvd
CVE-2017-17655P2CRITICALCVSS 9.8v11.3.0.122018-02-08
CVE-2017-17655 [CRITICAL] CWE-89 CVE-2017-17655: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUBackup PluginList method requests. The issue results from the lack of proper validation of a user-suppli
nvd
CVE-2018-1162P3HIGHCVSS 8.1v11.2.0.132018-02-08
CVE-2018-1162 [HIGH] CWE-22 CVE-2018-1162: This vulnerability allows remote attackers to create a denial-of-service condition on vulnerable ins This vulnerability allows remote attackers to create a denial-of-service condition on vulnerable installations of Quest NetVault Backup 11.2.0.13. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be easily bypassed. The specific flaw exists within the handling of Export requests. The issue resul
nvd
Quest Netvault Backup vulnerabilities | cvebase