CVE-2022-36955

Published: Jul 27, 2022Modified: Nov 21, 2024

8.4

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.5 / Impact: 5.9

Source: NVD

Description

In Veritas NetBackup, an attacker with unprivileged local access to a NetBackup Client may send specific commands to escalate their privileges. This affects 8.0 through 8.1.2, 8.2, 8.3 through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1.

Affected (5)

Products: Veritas: Netbackup

Veritas

1 product

Netbackup

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Veritas Netbackup	From 8.0 to 8.1.2
Veritas Netbackup	From 8.3.0.0 to 8.3.0.2
Veritas Netbackup	Version 8.2
Veritas Netbackup	Version 9.0
Veritas Netbackup	Version 9.1.0.0

References (2)

https://www.veritas.com/content/support/en_US/security/VTS22-008#Issue2

Source: cve@mitre.org

Vendor Advisory

https://www.veritas.com/content/support/en_US/security/VTS22-008#Issue2

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.