CVE-2020-36164

Name of the Vulnerable Software and Affected Versions: Veritas Enterprise Vault versions prior to 14.1

Description: An issue was discovered where Veritas Enterprise Vault loads the OpenSSL library on start-up, which attempts to load the openssl.cnf configuration file from specific locations. A low-privileged user can create a malicious openssl.cnf configuration file to load a malicious OpenSSL engine, resulting in arbitrary code execution as SYSTEM when the service starts. This gives the attacker administrator access on the system, allowing the attacker to access all data and installed applications.

Recommendations: For Veritas Enterprise Vault versions prior to 14.1, update to version 14.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the directories where the openssl.cnf configuration file can be created to prevent low-privileged users from loading a malicious OpenSSL engine.