netbackup_flex_scale_appliance

veritas / access_appliance+1

Published Apr 1, 2022

CVE-2022-46414

CRITICAL9.8

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Unauthenticated remote command execution can occur via the management portal.

CVE-2022-46411

veritas / access_appliance+1

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.

CVE-2022-46410

veritas / netbackup_flex_scale_appliance

An issue was discovered in Veritas NetBackup Flex Scale through 3.0. An attacker with non-root privileges may escalate privileges to root by using specific commands.

CVE-2022-46413

veritas / access_appliance+1

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Authenticated remote command execution can occur via the management portal.

CVE-2022-46412

veritas / netbackup_flex_scale_appliance

An issue was discovered in Veritas NetBackup Flex Scale through 3.0. A non-privileged user may escape a restricted shell and execute privileged commands.