ГлавнаяУязвимости → CVE-2024-28222
9.8критическая

CVE-2024-28222

→ есть в БДУ: BDU:2024-01877 (на русском)
Описание (на английском; русское — в БДУ выше)

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file.

Затрагиваемое ПО
Veritas NetbackupVeritas Netbackup appliance
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.veritas.com/content/support/en_US/security/VTS23-010https://www.veritas.com/content/support/en_US/security/VTS23-010