← Back

Aptare

aptare

Vendor: Veritas • 6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-27157
1Veritas
1Aptare
Nov 21, 2024
Oct 15, 2020
N/A· v4
8.1 HIGH· v3
6.8 MEDIUM· v2
Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and...Show more
Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the targeted user account.Show less
CVE-2020-27156
1Veritas
1Aptare
Nov 21, 2024
Oct 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerability could allow for remote code execution by an unauthenticated user.
CVE-2020-12877
1Veritas
1Aptare
Nov 21, 2024
May 14, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.
CVE-2020-12876
1Veritas
1Aptare
Nov 21, 2024
May 14, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.
CVE-2020-12875
1Veritas
1Aptare
Nov 21, 2024
May 14, 2020
N/A· v4
6.3 MEDIUM· v3
6.5 MEDIUM· v2
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters with...Show more
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.Show less
CVE-2020-12874
1Veritas
1Aptare
Nov 21, 2024
May 14, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.