|
256561
|
8.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client…
|
NVD-CWE-noinfo
|
CVE-2017-6407
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256562
|
8.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
access
|
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occ…
|
NVD-CWE-noinfo
|
CVE-2017-6406
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256563
|
7.5 |
HIGH
Network
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Hostname-based security is open to DNS spoofing.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2017-6405
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256564
|
5.5 |
MEDIUM
Local
|
veritas
|
netbackup
netbackup_appliance
|
An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data.
|
CWE-276
Incorrect Default Permissions
|
CVE-2017-6404
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256565
|
9.8 |
CRITICAL
Network
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup Before 8.0 and NetBackup Appliance Before 3.0. NetBackup Cloud Storage Service uses a hardcoded username and password.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-6403
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256566
|
6.5 |
MEDIUM
Network
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur.
|
NVD-CWE-noinfo
|
CVE-2017-6402
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256567
|
7.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat.
|
CWE-269
Improper Privilege Management
|
CVE-2017-6401
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256568
|
8.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
access
|
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged command execution on NetBackup Server and Client can occur (on the local system).
|
NVD-CWE-noinfo
|
CVE-2017-6400
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256569
|
8.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
access
|
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client…
|
NVD-CWE-noinfo
|
CVE-2017-6399
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256570
|
6.1 |
MEDIUM
Network
|
flightairmap
|
flightairmap
|
An issue was discovered in FlightAirMap v1.0-beta.10. The vulnerability exists due to insufficient filtration of user-supplied data in multiple parameters passed to several *-sub-menu.php pages. An a…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6397
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
