In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/98379 | Third Party Advisory VDB Entry |
https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue1 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2017-05-09 21:29
Updated : 2024-02-04 19:11
NVD link : CVE-2017-8856
Mitre link : CVE-2017-8856
CVE.ORG link : CVE-2017-8856
JSON object : View
Products Affected
veritas
- netbackup_appliance
- netbackup
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource