cbcvebase.

Veritas Netbackup vulnerabilities

67 known vulnerabilities affecting veritas/netbackup.

Total CVEs
67
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL18HIGH29MEDIUM20

Vulnerabilities

Page 4 of 4
CVE-2017-6402P4MEDIUMCVSS 6.5≤ 8.02017-03-02
CVE-2017-6402 [MEDIUM] CVE-2017-6402: An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur.
nvd
CVE-2021-41570P4MEDIUMCVSS 5.4≥ 8.2.0, < 9.0.0.1v9.12022-04-19
CVE-2021-41570 [MEDIUM] CWE-79 CVE-2021-41570: Veritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup Master Server Name, Display N Veritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup Master Server Name, Display Name, NetBackup User Name, or NetBackup Password field during a Settings/Configuration Add operation.
nvd
CVE-2022-36948P4MEDIUMCVSS 5.4≥ 8.0, < 8.3.0.2v9.0+2 more2022-07-27
CVE-2022-36948 [MEDIUM] CWE-79 CVE-2022-36948: In Veritas NetBackup OpsCenter, a DOM XSS attack can occur. This affects 8.x through 8.3.0.2, 9.x th In Veritas NetBackup OpsCenter, a DOM XSS attack can occur. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.
nvd
CVE-2022-36953P4MEDIUMCVSS 4.3≥ 8.0, < 8.3.0.2v9.0+1 more2022-07-27
CVE-2022-36953 [MEDIUM] CVE-2022-36953: In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to gain sensitive information. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.
nvd
CVE-2022-36995P4MEDIUMCVSS 4.3v8.1.1v8.1.2+8 more2022-07-28
CVE-2022-36995 [MEDIUM] CVE-2022-36995: An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x th An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could arbitrarily create directories on a NetBackup Primary server.
nvd
CVE-2017-6404P4MEDIUMCVSS 5.5≤ 7.6.1.22017-03-02
CVE-2017-6404 [MEDIUM] CWE-276 CVE-2017-6404: An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There ar An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data.
nvd
CVE-2022-42306P4MEDIUMCVSS 5.5≤ 8.22022-10-03
CVE-2022-42306 [MEDIUM] CWE-476 CVE-2022-42306: An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker w An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbx_exchange during registration and cause a NULL pointer exception, effectively crashing the pbx_exchange process.
nvd
Veritas Netbackup vulnerabilities | cvebase