10
CVE-2015-6552
- EPSS 2.16%
- Veröffentlicht 07.05.2016 14:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle secure@symantec.com
- Teams Watchlist Login
- Unerledigt Login
The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 allows remote attackers to make arbitrary RPC calls via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Veritas ≫ Netbackup Appliance Version1.1.0.1
Veritas ≫ Netbackup Appliance Version1.1.0.2
Veritas ≫ Netbackup Appliance Version1.2
Veritas ≫ Netbackup Appliance Version2.0
Veritas ≫ Netbackup Appliance Version2.0.1
Veritas ≫ Netbackup Appliance Version2.0.2
Veritas ≫ Netbackup Appliance Version2.0.3
Veritas ≫ Netbackup Appliance Version2.5
Veritas ≫ Netbackup Appliance Version2.5.1
Veritas ≫ Netbackup Appliance Version2.5.2
Veritas ≫ Netbackup Appliance Version2.5.3
Veritas ≫ Netbackup Appliance Version2.6
Veritas ≫ Netbackup Appliance Version2.6.0.2
Veritas ≫ Netbackup Appliance Version2.6.0.3
Veritas ≫ Netbackup Appliance Version2.6.0.4
Veritas ≫ Netbackup Appliance Version2.6.1
Veritas ≫ Netbackup Appliance Version2.6.1.1
Veritas ≫ Netbackup Appliance Version2.6.1.2
Veritas ≫ Netbackup Appliance Version2.7.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.16% | 0.827 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.