PT-2022-26360 · Veritas · Veritas Netbackup
Published
2022-10-03
·
Updated
2022-10-04
·
CVE-2022-42305
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Veritas NetBackup versions prior to 10.0.0.1
Veritas products (affected versions not specified)
Description
An issue was discovered that makes the NetBackup Primary server vulnerable to a Path traversal attack through the DiscoveryService service.
Recommendations
For Veritas NetBackup versions prior to 10.0.0.1, update to a version that contains a fix for this issue.
For Veritas products, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Veritas Netbackup