cbcvebase.

Veritas Aptare vulnerabilities

6 known vulnerabilities affecting veritas/aptare.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2020-27156P2CRITICALCVSS 9.8fixed in 10.52020-10-15
CVE-2020-27156 [CRITICAL] CWE-863 CVE-2020-27156: Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerabil Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerability could allow for remote code execution by an unauthenticated user.
nvd
CVE-2020-12874P3CRITICALCVSS 9.8fixed in 10.42020-05-14
CVE-2020-12874 [CRITICAL] CWE-287 CVE-2020-12874: Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when spec Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.
nvd
CVE-2020-27157P3HIGHCVSS 8.1fixed in 10.52020-10-15
CVE-2020-27157 [HIGH] CWE-294 CVE-2020-27157: Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when spec Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the targeted user account.
nvd
CVE-2020-12877P3HIGHCVSS 7.5fixed in 10.42020-05-14
CVE-2020-12877 [HIGH] CWE-306 CVE-2020-12877: Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authent Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.
nvd
CVE-2020-12876P3HIGHCVSS 7.5fixed in 10.42020-05-14
CVE-2020-12876 [HIGH] CWE-863 CVE-2020-12876: Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.
nvd
CVE-2020-12875P4MEDIUMCVSS 6.3fixed in 10.42020-05-14
CVE-2020-12875 [MEDIUM] CWE-863 CVE-2020-12875: Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticate Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.
nvd
Veritas Aptare vulnerabilities | cvebase