CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8858
https://notcve.org/view.php?id=CVE-2017-8858
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process. En Veritas NetBackup 8.0 y versiones anteriores y NetBackup Appliance 3.0 y anteriores, existe una escritura con privilegios remota de archivos no autenticada utilizando el proceso 'bprd'. • http://www.securityfocus.com/bid/98381 https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue3 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8856
https://notcve.org/view.php?id=CVE-2017-8856
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process. En Veritas NetBackup 8.0 y versiones anteriores y NetBackup Appliance 3.0 y versiones anteriores, hay una ejecución de comandos remotos arbitrarios no autenticados utilizando el proceso 'bprd'. • http://www.securityfocus.com/bid/98379 https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue1 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2017-8859
https://notcve.org/view.php?id=CVE-2017-8859
In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary commands as root. En Veritas NetBackup Appliance 3.0 y anteriores, los usuarios no autenticados pueden ejecutar comandos arbitrarios como root. • http://www.securityfocus.com/bid/98383 https://www.veritas.com/content/support/en_US/security/VTS17-005.html#Issue1 •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2017-6408
https://notcve.org/view.php?id=CVE-2017-6408
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects to a socket before permissions are secured. Se ha descubierto un problema en Veritas NetBackup 8.0 y versiones anteriores y NetBackup Appliance 3.0 y versiones anteriores. Puede ocurrir una condición de carrera de escalada de privilegios locales en pbx_exchange cuando un usuario local se conecta a un socket antes de que se aseguren los permisos. • http://www.securityfocus.com/bid/96491 http://www.securitytracker.com/id/1037950 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue8 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-6409
https://notcve.org/view.php?id=CVE-2017-6409
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interfaces permit inappropriate access. Se ha descubierto un problema en Veritas NetBackup 8.0 y versiones anteriores y NetBackup Appliance 3.0 y versiones anteriores. Interfaces CORBA no autenticadas permiten acceso inapropiado. • http://www.securityfocus.com/bid/96504 http://www.securitytracker.com/id/1037950 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue11 • CWE-306: Missing Authentication for Critical Function •