threat
engine
.sh
Back
·
··:··
Home
/
Product
/
veritas netbackup
Product
veritas netbackup
68 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-52945
< 10.5
An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating
7.8
HIGH
CVE-2024-33672
< 10.4
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform a
7.7
HIGH
CVE-2024-28222
< 8.1.2
In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, all
9.8
CRITICAL
CVE-2023-28759
< 10.0
An issue was discovered in Veritas NetBackup before 10.0 on Windows. A vulnerability in the way the client validates the path to a
7.8
HIGH
CVE-2023-28758
< 8.3.0.2
An issue was discovered in Veritas NetBackup before 8.3.0.2. BPCD allows an unprivileged user to specify a log file path when exec
7.1
HIGH
CVE-2022-45461
<= 10.1
The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-r
7.5
HIGH
CVE-2022-42308
<= 8.2
An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can delete ar
9.0
CRITICAL
CVE-2022-42307
<= 10.0.0.1
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulner
5.3
MEDIUM
CVE-2022-42306
<= 8.2
An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can send a cr
6.5
MEDIUM
CVE-2022-42305
<= 10.0.0.1
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulner
5.3
MEDIUM
CVE-2022-42304
<= 10.0
An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable
8.0
HIGH
CVE-2022-42303
<= 10.0
An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable
8.0
HIGH
CVE-2022-42302
<= 10.0
An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable
9.0
CRITICAL
CVE-2022-42301
<= 10.0.0.1
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulner
5.4
MEDIUM
CVE-2022-42300
<= 10.0.0.1
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server nbars pro
4.3
MEDIUM
CVE-2022-42299
<= 10.0.0.1
An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulner
5.3
MEDIUM
CVE-2022-37000
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
6.5
MEDIUM
CVE-2022-36999
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
6.5
MEDIUM
CVE-2022-36998
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
6.3
MEDIUM
CVE-2022-36997
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
7.1
HIGH
CVE-2022-36996
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
4.3
MEDIUM
CVE-2022-36995
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
4.3
MEDIUM
CVE-2022-36994
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
6.3
MEDIUM
CVE-2022-36993
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
8.8
HIGH
CVE-2022-36992
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
9.9
CRITICAL
CVE-2022-36991
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
8.1
HIGH
CVE-2022-36990
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
9.6
CRITICAL
CVE-2022-36989
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
8.8
HIGH
CVE-2022-36988
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
8.0
HIGH
CVE-2022-36987
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
8.5
HIGH
CVE-2022-36986
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
8.6
HIGH
CVE-2022-36985
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
7.8
HIGH
CVE-2022-36984
all versions
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x throu
7.7
HIGH
CVE-2022-36956
all versions
In Veritas NetBackup, the NetBackup Client allows arbitrary command execution from any remote host that has access to a valid host
9.0
CRITICAL
CVE-2022-36955
>= 8.0 and <= 8.1.2
In Veritas NetBackup, an attacker with unprivileged local access to a NetBackup Client may send specific commands to escalate thei
7.8
HIGH
CVE-2022-36954
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, under specific conditions, an authenticated remote attacker may be able to create or modify OpsCen
9.9
CRITICAL
CVE-2022-36953
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to gain sensitive information. Th
4.3
MEDIUM
CVE-2022-36952
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, a hard-coded credential exists that could be used to exploit the underlying VxSS subsystem. This a
8.4
HIGH
CVE-2022-36951
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may compromise the host by exploiting an incorrectly patched vu
9.8
CRITICAL
CVE-2022-36950
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may be able to perform remote command execution through a Java
9.8
CRITICAL
CVE-2022-36949
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, an attacker with local access to a NetBackup OpsCenter server could potentially escalate their pri
9.3
CRITICAL
CVE-2022-36948
>= 8.0 and < 8.3.0.2
In Veritas NetBackup OpsCenter, a DOM XSS attack can occur. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9
5.4
MEDIUM
CVE-2021-41570
>= 8.2.0 and < 9.0.0.1
Veritas NetBackup OpsCenter Analytics 9.1 allows XSS via the NetBackup Master Server Name, Display Name, NetBackup User Name, or N
5.4
MEDIUM
CVE-2020-36169
<= 8.3.0.1
An issue was discovered in Veritas NetBackup through 8.3.0.1 and OpsCenter through 8.3.0.1. Processes using OpenSSL attempt to loa
9.3
CRITICAL
CVE-2020-36163
<= 8.3.0.1
An issue was discovered in Veritas NetBackup and OpsCenter through 8.3.0.1. NetBackup processes using Strawberry Perl attempt to l
9.3
CRITICAL
CVE-2017-8858
<= 8.0
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file writ
9.8
CRITICAL
CVE-2017-8857
<= 8.0
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary rem
9.8
CRITICAL
CVE-2017-8856
<= 8.0
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command e
9.8
CRITICAL
CVE-2017-6409
<= 8.0
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interf
9.8
CRITICAL
CVE-2017-6408
<= 8.0
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation
7.0
HIGH
CVE-2017-6407
<= 7.7.1
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command executio
8.8
HIGH
CVE-2017-6406
<= 7.7.1
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execu
8.8
HIGH
CVE-2017-6405
<= 8.0
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Hostname-based security is o
7.5
HIGH
CVE-2017-6404
<= 7.6.1.2
An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, al
5.5
MEDIUM
CVE-2017-6403
<= 8.0
An issue was discovered in Veritas NetBackup Before 8.0 and NetBackup Appliance Before 3.0. NetBackup Cloud Storage Service uses a
9.8
CRITICAL
CVE-2017-6402
<= 8.0
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting
6.5
MEDIUM
CVE-2017-6401
<= 8.0
An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can
7.8
HIGH
CVE-2017-6400
<= 7.7.1
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged command execution on Ne
8.8
HIGH
CVE-2017-6399
<= 7.7.1
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command executio
8.8
HIGH
CVE-2015-6552
all versions
The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through
9.8
CRITICAL
CVE-2015-6551
all versions
Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.
5.9
MEDIUM
CVE-2015-6550
all versions
bpcd in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBac
9.8
CRITICAL
CVE-2006-0991
all versions
Buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver) on NetBackup 6.0 for Windows allows remote attack
CVE-2006-0990
all versions
Stack-based buffer overflow in the NetBackup Catalog daemon (bpdbm) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and Dat
CVE-2006-0989
all versions
Stack-based buffer overflow in the volume manager daemon (vmd) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCent
CVE-2005-3116
all versions
Stack-based buffer overflow in a shared library as used by the Volume Manager daemon (vmd) in VERITAS NetBackup Enterprise Server
CVE-2005-2611
all versions
VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare M
CVE-2004-1389
all versions
Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5,
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin