CVE-2017-8856

In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:veritas:netbackup:*:*:*:*:*:*:*:*
cpe:2.3:a:veritas:netbackup_appliance:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:34

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/98379 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/98379 - Third Party Advisory, VDB Entry
References () https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue1 - Vendor Advisory () https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue1 - Vendor Advisory

Information

Published : 2017-05-09 21:29

Updated : 2024-11-21 03:34


NVD link : CVE-2017-8856

Mitre link : CVE-2017-8856

CVE.ORG link : CVE-2017-8856


JSON object : View

Products Affected

veritas

  • netbackup_appliance
  • netbackup
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource