Vulnerabilities > Veritas > Netbackup > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-28 | CVE-2022-36999 | Unspecified vulnerability in Veritas products An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). | 6.5 |
| 2022-07-28 | CVE-2022-37000 | Unspecified vulnerability in Veritas products An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). | 6.5 |
| 2022-07-27 | CVE-2022-36948 | Cross-site Scripting vulnerability in Veritas Netbackup In Veritas NetBackup OpsCenter, a DOM XSS attack can occur. | 5.4 |
| 2022-07-27 | CVE-2022-36953 | Unspecified vulnerability in Veritas Netbackup In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to gain sensitive information. | 4.3 |
| 2022-07-27 | CVE-2022-36954 | Unspecified vulnerability in Veritas Netbackup In Veritas NetBackup OpsCenter, under specific conditions, an authenticated remote attacker may be able to create or modify OpsCenter user accounts. | 6.5 |
| 2022-04-19 | CVE-2021-41570 | Cross-site Scripting vulnerability in Veritas Netbackup Veritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup Master Server Name, Display Name, NetBackup User Name, or NetBackup Password field during a Settings/Configuration Add operation. | 5.4 |
| 2017-03-02 | CVE-2017-6404 | Incorrect Default Permissions vulnerability in Veritas Netbackup and Netbackup Appliance An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. | 5.5 |
| 2017-03-02 | CVE-2017-6402 | Unspecified vulnerability in Veritas Netbackup and Netbackup Appliance An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. | 6.5 |
| 2016-05-07 | CVE-2015-6551 | Information Exposure vulnerability in Veritas Netbackup and Netbackup Appliance Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.4 do not use TLS for administration-console traffic to the NBU server, which allows remote attackers to obtain sensitive information by sniffing the network for key-exchange packets. | 5.9 |