Vulnerabilities > CVE-2022-46414 - Unspecified vulnerability in Veritas Access Appliance and Netbackup Flex Scale Appliance

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

veritas

critical

NVD

Published: 2022-12-04

Updated: 2022-12-06

Summary

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Unauthenticated remote command execution can occur via the management portal.

Vulnerable Configurations

Part	Description	Count
Application	Veritas Veritas Netbackup Flex Scale Appliance 2.1 Veritas Netbackup Flex Scale Appliance 3.0 Veritas Access Appliance 7.4.2 Veritas Access Appliance 7.4.3 Veritas Access Appliance 7.4.3.100 Veritas Access Appliance 7.4.3.200	6

References

https://www.veritas.com/content/support/en_US/security/VTS22-019#issue1