An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could remotely trigger impacts that include arbitrary file read, Server-Side Request Forgery (SSRF), and denial of service.
References
Link | Resource |
---|---|
https://www.veritas.com/content/support/en_US/security/VTS22-004#h9 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
08 Aug 2023, 14:21
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-918 |
Information
Published : 2022-07-28 01:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-36997
Mitre link : CVE-2022-36997
CVE.ORG link : CVE-2022-36997
JSON object : View
Products Affected
veritas
- flex_scale
- netbackup
- netbackup_appliance
- flex_appliance
CWE
CWE-918
Server-Side Request Forgery (SSRF)