Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-36992

Опубликовано: 28 июл. 2022
Источник: nvd
CVSS3: 9.9
CVSS3: 8.8
EPSS Низкий

Описание

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could remotely execute arbitrary commands on a NetBackup Primary server (in specific notify conditions).

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:veritas:flex_appliance:1.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_appliance:1.3:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_appliance:2.0:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_appliance:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_appliance:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_appliance:2.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_scale:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:flex_scale:2.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:8.1.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:8.1.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:8.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:8.3:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:8.3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:8.3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:9.0:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:9.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:9.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:9.1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup_appliance:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup_appliance:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup_appliance:3.2:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup_appliance:4.0:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup_appliance:4.1:*:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.2:maintenance_release1:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.2:maintenance_release2:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.2:maintenance_release3:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.3.0.1:maintenance_release1:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.3.0.1:maintenance_release2:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.3.0.2:maintenance_release1:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:3.3.0.2:maintenance_release2:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:4.0.0.1:maintenance_release1:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:4.0.0.1:maintenance_release2:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:4.0.0.1:maintenance_release3:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:4.1.0.1:maintenance_release1:*:*:*:*:*:*
cpe:2.3:h:veritas:netbackup_appliance:4.1.0.1:maintenance_release2:*:*:*:*:*:*

EPSS

Процентиль: 77%
0.01048
Низкий

9.9 Critical

CVSS3

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

github логотип

GHSA-x844-82pm-fvg4

CVSS3: 8.8
github
больше 3 лет назад

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could remotely execute arbitrary commands on a NetBackup Primary server (in specific notify conditions).

EPSS

Процентиль: 77%
0.01048
Низкий

9.9 Critical

CVSS3

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo