Vulnerabilities > Veritas > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-12-06 CVE-2021-44677 Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault
An issue (1 of 6) was discovered in Veritas Enterprise Vault through 14.1.2.
network
low complexity
veritas CWE-502
critical
 9.8
9.8
2021-12-06 CVE-2021-44678 Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault
An issue (2 of 6) was discovered in Veritas Enterprise Vault through 14.1.2.
network
low complexity
veritas CWE-502
critical
 9.8
9.8
2021-12-06 CVE-2021-44679 Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault
An issue (3 of 6) was discovered in Veritas Enterprise Vault through 14.1.2.
network
low complexity
veritas CWE-502
critical
 9.8
9.8
2021-12-06 CVE-2021-44680 Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault
An issue (4 of 6) was discovered in Veritas Enterprise Vault through 14.1.2.
network
low complexity
veritas CWE-502
critical
 9.8
9.8
2021-12-06 CVE-2021-44681 Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault
An issue (5 of 6) was discovered in Veritas Enterprise Vault through 14.1.2.
network
low complexity
veritas CWE-502
critical
 9.8
9.8
2021-12-06 CVE-2021-44682 Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault
An issue (6 of 6) was discovered in Veritas Enterprise Vault through 14.1.2.
network
low complexity
veritas CWE-502
critical
 9.8
9.8
2021-03-01 CVE-2021-27877 Improper Authentication vulnerability in Veritas Backup Exec
An issue was discovered in Veritas Backup Exec before 21.2.
network
low complexity
veritas CWE-287
critical
 9.8
9.8
2020-10-15 CVE-2020-27156 Incorrect Authorization vulnerability in Veritas Aptare 10.4
Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks.
network
low complexity
veritas CWE-863
critical
 9.8
9.8
2020-05-14 CVE-2020-12874 Improper Authentication vulnerability in Veritas Aptare
Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.
network
low complexity
veritas CWE-287
critical
 9.8
9.8
2019-11-05 CVE-2019-18780 Command Injection vulnerability in Veritas products
An arbitrary command injection vulnerability in the Cluster Server component of Veritas InfoScale allows an unauthenticated remote attacker to execute arbitrary commands as root or administrator.
network
low complexity
veritas CWE-77
critical
 9.8
9.8