Vulnerabilities > Veritas > Netbackup > 8.3

DATE CVE VULNERABILITY TITLE RISK
2022-11-17 CVE-2022-45461 OS Command Injection vulnerability in Veritas Netbackup
The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users (that have been explicitly added to the auth.conf file) to execute arbitrary commands as root.
network
low complexity
veritas CWE-78
8.8
8.8
2022-10-03 CVE-2022-42299 Unspecified vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products.
network
low complexity
veritas
7.5
7.5
2022-10-03 CVE-2022-42300 Unspecified vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products.
network
low complexity
veritas
6.5
6.5
2022-10-03 CVE-2022-42301 XXE vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products.
network
low complexity
veritas CWE-611
8.8
8.8
2022-10-03 CVE-2022-42302 SQL Injection vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products.
network
low complexity
veritas CWE-89
critical
 9.8
9.8
2022-10-03 CVE-2022-42303 SQL Injection vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products.
network
low complexity
veritas CWE-89
critical
 9.8
9.8
2022-10-03 CVE-2022-42304 SQL Injection vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products.
network
low complexity
veritas CWE-89
critical
 9.8
9.8
2022-10-03 CVE-2022-42305 Path Traversal vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products.
network
low complexity
veritas CWE-22
7.5
7.5
2022-10-03 CVE-2022-42307 XXE vulnerability in Veritas Netbackup
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products.
network
low complexity
veritas CWE-611
critical
 9.8
9.8
2022-07-28 CVE-2022-36996 Unspecified vulnerability in Veritas products
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products).
network
low complexity
veritas
6.5
6.5