CVE-2024-53912

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:veritas:enterprise_vault:*:*:*:*:*:*:*:*

History

29 Nov 2024, 20:55

Type Values Removed Values Added
First Time Veritas
Veritas enterprise Vault
References () https://www.veritas.com/content/support/en_US/security/VTS24-014 - () https://www.veritas.com/content/support/en_US/security/VTS24-014 - Vendor Advisory
CPE cpe:2.3:a:veritas:enterprise_vault:*:*:*:*:*:*:*:*

26 Nov 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-24 21:15

Updated : 2024-11-29 20:55


NVD link : CVE-2024-53912

Mitre link : CVE-2024-53912

CVE.ORG link : CVE-2024-53912


JSON object : View

Products Affected

veritas

  • enterprise_vault
CWE
CWE-502

Deserialization of Untrusted Data