CVE-2024-33673

Published: Apr 26, 2024Modified: Jun 30, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: MITRE (Secondary)

Description

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Improper access controls allow for DLL Hijacking in the Windows DLL Search path.

Affected (1)

Products: Veritas: Backup Exec

Veritas

1 product

Backup Exec

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Veritas Backup Exec	From 21.0 to 23.0

Related CWEs

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (2)

https://www.veritas.com/support/en_US/security/VTS24-002#H2

Source: cve@mitre.org

Vendor Advisory

https://www.veritas.com/support/en_US/security/VTS24-002#H2

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.