CVE-2024-53911

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:veritas:enterprise_vault:*:*:*:*:*:*:*:*

History

29 Nov 2024, 20:55

Type Values Removed Values Added
CPE cpe:2.3:a:veritas:enterprise_vault:*:*:*:*:*:*:*:*
First Time Veritas
Veritas enterprise Vault
References () https://www.veritas.com/content/support/en_US/security/VTS24-014 - () https://www.veritas.com/content/support/en_US/security/VTS24-014 - Vendor Advisory

26 Nov 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-24 21:15

Updated : 2024-11-29 20:55


NVD link : CVE-2024-53911

Mitre link : CVE-2024-53911

CVE.ORG link : CVE-2024-53911


JSON object : View

Products Affected

veritas

  • enterprise_vault
CWE
CWE-502

Deserialization of Untrusted Data