CVE-2021-44678

Name of the Vulnerable Software and Affected Versions: Veritas Enterprise Vault versions through 14.1.2

Description: The issue is related to the deserialization behavior inherent to the .NET Remoting service in Veritas Enterprise Vault. On start-up, the application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. A malicious attacker can exploit both TCP remoting services and local IPC services on the Enterprise Vault Server. This can be mitigated by properly configuring the servers and firewall as described in the vendor's security alert.

Recommendations: For versions through 14.1.2, properly configure the servers and firewall as described in the vendor's security alert for this vulnerability to mitigate the issue. As a temporary workaround, consider restricting access to the TCP remoting services and local IPC services on the Enterprise Vault Server until a patch is available.