CVE-2018-18652

EPSS 0.7%
Veröffentlicht 25.10.2018 23:29:00
Zuletzt bearbeitet 21.11.2024 03:56:18
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Veritas ≫ Netbackup Appliance Version < 3.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.7%	0.712

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

http://www.securityfocus.com/bid/105737

Third Party Advisory

VDB Entry

https://www.veritas.com/content/support/en_US/security/VTS18-003.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2018-18652

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-18652

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-18652

EUVD