2.7.2

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-07	CVE-2024-28222	Path Traversal vulnerability in Veritas Netbackup and Netbackup Appliance In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file. network low complexity veritas CWE-22 critical	9.8
2019-03-21	CVE-2019-9868	Insufficiently Protected Credentials vulnerability in Veritas Netbackup Appliance An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. network low complexity veritas CWE-522	7.2
2019-03-21	CVE-2019-9867	Insufficiently Protected Credentials vulnerability in Veritas Netbackup Appliance An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. network low complexity veritas CWE-522	7.2
2018-10-25	CVE-2018-18652	Unspecified vulnerability in Veritas Netbackup Appliance A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. network low complexity veritas	7.2
2017-05-09	CVE-2017-8859	Unspecified vulnerability in Veritas Netbackup Appliance In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary commands as root. network low complexity veritas critical	9.8
2017-05-09	CVE-2017-8858	Incorrect Permission Assignment for Critical Resource vulnerability in Veritas Netbackup and Netbackup Appliance In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process. network low complexity veritas CWE-732 critical	9.8
2017-05-09	CVE-2017-8857	Incorrect Permission Assignment for Critical Resource vulnerability in Veritas Netbackup and Netbackup Appliance In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process. network low complexity veritas CWE-732 critical	9.8
2017-05-09	CVE-2017-8856	Incorrect Permission Assignment for Critical Resource vulnerability in Veritas Netbackup and Netbackup Appliance In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process. network low complexity veritas CWE-732 critical	9.8
2017-03-02	CVE-2017-6409	Missing Authentication for Critical Function vulnerability in Veritas Netbackup and Netbackup Appliance An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. network low complexity veritas CWE-306 critical	9.8
2017-03-02	CVE-2017-6408	Race Condition vulnerability in Veritas Netbackup and Netbackup Appliance An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. local high complexity veritas CWE-362	7.0