Vulnerabilities > Veritas > Netbackup > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-03 | CVE-2022-42307 | XXE vulnerability in Veritas Netbackup An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. | 9.8 |
| 2022-10-03 | CVE-2022-42304 | SQL Injection vulnerability in Veritas Netbackup An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. | 9.8 |
| 2022-10-03 | CVE-2022-42303 | SQL Injection vulnerability in Veritas Netbackup An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. | 9.8 |
| 2022-10-03 | CVE-2022-42302 | SQL Injection vulnerability in Veritas Netbackup An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. | 9.8 |
| 2022-07-28 | CVE-2022-36986 | Unspecified vulnerability in Veritas products An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). | 9.8 |
| 2022-07-27 | CVE-2022-36952 | Use of Hard-coded Credentials vulnerability in Veritas Netbackup In Veritas NetBackup OpsCenter, a hard-coded credential exists that could be used to exploit the underlying VxSS subsystem. | 9.8 |
| 2022-07-27 | CVE-2022-36951 | Unspecified vulnerability in Veritas Netbackup In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may compromise the host by exploiting an incorrectly patched vulnerability. | 9.8 |
| 2022-07-27 | CVE-2022-36950 | Unspecified vulnerability in Veritas Netbackup In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may be able to perform remote command execution through a Java classloader manipulation. | 9.8 |
| 2017-05-09 | CVE-2017-8856 | Incorrect Permission Assignment for Critical Resource vulnerability in Veritas Netbackup and Netbackup Appliance In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process. | 9.8 |
| 2017-05-09 | CVE-2017-8857 | Incorrect Permission Assignment for Critical Resource vulnerability in Veritas Netbackup and Netbackup Appliance In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process. | 9.8 |