Shodan
Vulnerabilities
Vulnerable Software
Veritas:  Security Vulnerabilities
CVE-2017-8895
In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of service or remote code execution. An unauthenticated attacker can use this vulnerability to crash the agent or potentially take control of the agent process and then the system it is running on.
CVSS Score
9.8
EPSS Score
0.671
Published
2017-05-10
CVE-2017-8856
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
CVSS Score
9.8
EPSS Score
0.026
Published
2017-05-09
CVE-2017-8857
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process.
CVSS Score
9.8
EPSS Score
0.03
Published
2017-05-09
CVE-2017-8858
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process.
CVSS Score
9.8
EPSS Score
0.014
Published
2017-05-09
CVE-2017-8859
In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary commands as root.
CVSS Score
9.8
EPSS Score
0.011
Published
2017-05-09
CVE-2017-7444
In Veritas System Recovery before 16 SP1, there is a DLL hijacking vulnerability in the patch installer if an attacker has write access to the directory from which the product is executed.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-04-05
CVE-2017-6407
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client) can occur.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-03-02
CVE-2017-6408
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects to a socket before permissions are secured.
CVSS Score
7.0
EPSS Score
0.0
Published
2017-03-02
CVE-2017-6409
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interfaces permit inappropriate access.
CVSS Score
9.8
EPSS Score
0.005
Published
2017-03-02
CVE-2017-6399
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client) can occur.
CVSS Score
8.8
EPSS Score
0.003
Published
2017-03-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved