CVE-2024-27283

Name of the Vulnerable Software and Affected Versions Veritas eDiscovery Platform versions prior to 10.2.5

Description A vulnerability was discovered that allows the application administrator to upload potentially malicious files to arbitrary locations on the server where the application is installed.

Recommendations For versions prior to 10.2.5, update to version 10.2.5 or later to resolve the issue. As a temporary workaround, consider restricting file upload capabilities for application administrators until a patch is applied. Restrict access to sensitive server locations to minimize the risk of exploitation.