Shodan
Vulnerabilities
Vulnerable Software
Veritas:  >> Netbackup Appliance  >> 2.6.1  Security Vulnerabilities
CVE-2024-28222
In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file.
CVSS Score
9.8
EPSS Score
0.009
Published
2024-03-07
CVE-2019-9867
An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The proxy server password is displayed to an administrator.
CVSS Score
7.2
EPSS Score
0.003
Published
2019-03-21
CVE-2019-9868
An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The SMTP password is displayed to an administrator.
CVSS Score
7.2
EPSS Score
0.003
Published
2019-03-21
CVE-2018-18652
A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.
CVSS Score
7.2
EPSS Score
0.014
Published
2018-10-25
CVE-2017-8856
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
CVSS Score
9.8
EPSS Score
0.026
Published
2017-05-09
CVE-2017-8857
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process.
CVSS Score
9.8
EPSS Score
0.03
Published
2017-05-09
CVE-2017-8858
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process.
CVSS Score
9.8
EPSS Score
0.014
Published
2017-05-09
CVE-2017-8859
In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary commands as root.
CVSS Score
9.8
EPSS Score
0.011
Published
2017-05-09
CVE-2017-6407
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client) can occur.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-03-02
CVE-2017-6408
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects to a socket before permissions are secured.
CVSS Score
7.0
EPSS Score
0.0
Published
2017-03-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved