CVE-2024-35204

Veritas System Recovery before 23.3_Hotfix has incorrect permissions for the Veritas System Recovery folder, and thus low-privileged users can conduct attacks.
Configurations

No configuration.

History

21 Nov 2024, 09:19

Type Values Removed Values Added
References () https://www.veritas.com/support/en_US/security/VTS24-005 - () https://www.veritas.com/support/en_US/security/VTS24-005 -

26 Sep 2024, 16:15

Type Values Removed Values Added
Summary (en) Veritas System Recovery before 23.2_Hotfix has incorrect permissions for the Veritas System Recovery folder, and thus low-privileged users can conduct attacks. (en) Veritas System Recovery before 23.3_Hotfix has incorrect permissions for the Veritas System Recovery folder, and thus low-privileged users can conduct attacks.

03 Jul 2024, 02:01

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.4
CWE CWE-272

22 May 2024, 21:15

Type Values Removed Values Added
References
  • {'url': 'https://www.veritas.com/content/support/en_US/article.100065391', 'source': 'cve@mitre.org'}

16 May 2024, 20:15

Type Values Removed Values Added
References
  • () https://www.veritas.com/support/en_US/security/VTS24-005 -
Summary
  • (es) Veritas System Recovery anterior a 23.2_Hotfix tiene permisos incorrectos para la carpeta Veritas System Recovery y, por lo tanto, los usuarios con pocos privilegios pueden realizar ataques.

14 May 2024, 15:39

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-14 15:39

Updated : 2024-11-21 09:19


NVD link : CVE-2024-35204

Mitre link : CVE-2024-35204

CVE.ORG link : CVE-2024-35204


JSON object : View

Products Affected

No product.

CWE
CWE-272

Least Privilege Violation