CVE-2022-46411
- EPSS 0.24%
- Published 04.12.2022 05:15:10
- Last modified 24.04.2025 16:15:24
An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.
CVE-2022-46413
- EPSS 3.13%
- Published 04.12.2022 05:15:10
- Last modified 21.11.2024 07:30:33
An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Authenticated remote command execution can occur via the management portal.
CVE-2022-46414
- EPSS 2.93%
- Published 04.12.2022 05:15:10
- Last modified 24.04.2025 14:15:44
An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Unauthenticated remote command execution can occur via the management portal.
CVE-2022-22965
- EPSS 94.44%
- Published 01.04.2022 23:15:13
- Last modified 10.04.2025 16:56:46
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Sp...
- EPSS 6.4%
- Published 05.11.2019 20:15:11
- Last modified 21.11.2024 04:33:33
An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote attacker to execute arbitrary commands as root or administrator. These Veritas products are affected: Access 7.4.2 and ...