CVEs (41)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The SMTP password is displayed to an administrator. |
An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The proxy server password is displayed to an administrator. |
A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user prov...Show more |
1Veritas 1Netbackup Appliance May 13, 2026 May 9, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary commands as root. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 May 9, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 May 9, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 May 9, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interfaces permit inappropriate access. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects to a socket before pe...Show more |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client) can occur. |
1Veritas 3Access NetbackupNetbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occur. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Hostname-based security is open to DNS spoofing. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in Veritas NetBackup Before 8.0 and NetBackup Appliance Before 3.0. NetBackup Cloud Storage Service uses a hardcoded username and password. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur. |
1Veritas 2Netbackup Netbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat. |
1Veritas 3Access NetbackupNetbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged command execution on NetBackup Server and Client can occur (on the local system). |
1Veritas 3Access NetbackupNetbackup ApplianceMay 13, 2026 Mar 2, 2017 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client) can occur. |
1Veritas 2Netbackup Netbackup ApplianceMay 6, 2026 May 7, 2016 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2....Show more |
1Veritas 2Netbackup Netbackup ApplianceMay 6, 2026 May 7, 2016 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.4 do not use TLS for administration-console traffic to the NBU server, which allows remote...Show more |