Vulnerabilities > CVE-2019-14417 - Unspecified vulnerability in Veritas Resiliency Platform
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An issue was discovered in Veritas Resiliency Platform (VRP) before 3.4 HF1. An arbitrary command execution vulnerability allows a malicious VRP user to execute commands with root privilege within the VRP virtual machine, related to DNS functionality.
Vulnerable Configurations
References
- http://packetstormsecurity.com/files/153842/Veritas-Resiliency-Platform-VRP-Traversal-Command-Execution.html
- http://packetstormsecurity.com/files/153842/Veritas-Resiliency-Platform-VRP-Traversal-Command-Execution.html
- http://seclists.org/fulldisclosure/2019/Jul/39
- http://seclists.org/fulldisclosure/2019/Jul/39
- https://www.veritas.com/content/support/en_US/security/VTS19-002.html#Issue2
- https://www.veritas.com/content/support/en_US/security/VTS19-002.html#Issue2