An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity (XXE) Injection attack through the DiscoveryService service.
References
Link | Resource |
---|---|
https://www.veritas.com/content/support/en_US/security/VTS22-012#M2 | Patch Vendor Advisory |
Configurations
History
No history.
Information
Published : 2022-10-03 15:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-42307
Mitre link : CVE-2022-42307
CVE.ORG link : CVE-2022-42307
JSON object : View
Products Affected
veritas
- netbackup
CWE
CWE-611
Improper Restriction of XML External Entity Reference