PT-2022-26359 · Veritas · Netbackup
Published
2022-10-03
·
Updated
2022-10-04
·
CVE-2022-42304
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Veritas NetBackup versions prior to 10.0
Veritas related products (affected versions not specified)
Description
A SQL Injection attack issue was discovered, affecting the idm, nbars, and SLP manager code of the NetBackup Primary server.
Recommendations
For Veritas NetBackup versions prior to 10.0, update to version 10.0 or later to resolve the issue.
For Veritas related products, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netbackup