Veritas

Netbackup Flex Scale Appliance

6 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-46411

  • EPSS 0.24%
  • Published 04.12.2022 05:15:10
  • Last modified 24.04.2025 16:15:24

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.

8.8

CVE-2022-46412

  • EPSS 0.29%
  • Published 04.12.2022 05:15:10
  • Last modified 21.11.2024 07:30:33

An issue was discovered in Veritas NetBackup Flex Scale through 3.0. A non-privileged user may escape a restricted shell and execute privileged commands.

8.8

CVE-2022-46413

  • EPSS 3.13%
  • Published 04.12.2022 05:15:10
  • Last modified 21.11.2024 07:30:33

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Authenticated remote command execution can occur via the management portal.

9.8

CVE-2022-46414

  • EPSS 2.93%
  • Published 04.12.2022 05:15:10
  • Last modified 24.04.2025 14:15:44

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Unauthenticated remote command execution can occur via the management portal.

8.8

CVE-2022-46410

  • EPSS 0.24%
  • Published 04.12.2022 05:15:09
  • Last modified 24.04.2025 16:15:24

An issue was discovered in Veritas NetBackup Flex Scale through 3.0. An attacker with non-root privileges may escalate privileges to root by using specific commands.

9.8

CVE-2022-22965

Warning Exploit
  • EPSS 94.44%
  • Published 01.04.2022 23:15:13
  • Last modified 10.04.2025 16:56:46

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Sp...