exploitDog

CVE-2018-18652

Опубликовано: 25 окт. 2018

Источник: nvd

CVSS3: 7.2

CVSS2: 9

EPSS Низкий

Описание

A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.

Ссылки

http://www.securityfocus.com/bid/105737
Third Party Advisory
VDB Entry
https://www.veritas.com/content/support/en_US/security/VTS18-003.html
Vendor Advisory
http://www.securityfocus.com/bid/105737
Third Party Advisory
VDB Entry
https://www.veritas.com/content/support/en_US/security/VTS18-003.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:veritas:netbackup_appliance:*:*:*:*:*:*:*:*

Версия до 3.1.2 (исключая)

EPSS

Процентиль: 72%

0.00701

Низкий

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-78wx-v5xq-93gg

CVSS3: 7.2

github

больше 3 лет назад

A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.

EPSS

Процентиль: 72%

0.00701

Низкий

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo