CVE-2024-35204
- EPSS 0.02%
- Veröffentlicht 14.05.2024 15:39:42
- Zuletzt bearbeitet 21.11.2024 09:19:55
Veritas System Recovery before 23.3_Hotfix has incorrect permissions for the Veritas System Recovery folder, and thus low-privileged users can conduct attacks.
CVE-2022-41320
- EPSS 0.33%
- Veröffentlicht 23.09.2022 05:15:08
- Zuletzt bearbeitet 27.05.2025 15:15:29
Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration. This vulnerability could provide a Windows user (who has sufficient privileges) to access ...
CVE-2022-26778
- EPSS 0.1%
- Veröffentlicht 10.03.2022 17:47:58
- Zuletzt bearbeitet 21.11.2024 06:54:29
Veritas System Recovery (VSR) 18 and 21 stores a network destination password in the Windows registry during configuration of the backup configuration. This could allow a Windows user (who has sufficient privileges) to access a network file system th...
CVE-2020-36160
- EPSS 0.05%
- Veröffentlicht 06.01.2021 01:15:12
- Zuletzt bearbeitet 21.11.2024 05:28:50
An issue was discovered in Veritas System Recovery before 21.2. On start-up, it loads the OpenSSL library from \usr\local\ssl. This library attempts to load the from \usr\local\ssl\openssl.cnf configuration file, which does not exist. By default, on ...
CVE-2017-7444
- EPSS 0.12%
- Veröffentlicht 05.04.2017 20:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
In Veritas System Recovery before 16 SP1, there is a DLL hijacking vulnerability in the patch installer if an attacker has write access to the directory from which the product is executed.