Skip to main content

Backup Exec

10 CVEs product

Monthly

CVE-2024-33673 HIGH This Week

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Backup Exec
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2024-33671 HIGH This Week

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Backup Exec
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2021-27878 HIGH POC KEV THREAT Act Now

An issue was discovered in Veritas Backup Exec before 21.2. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backup Exec
NVD
CVSS 3.1
8.8
EPSS
24.0%
CVE-2021-27877 CRITICAL POC KEV THREAT Emergency

An issue was discovered in Veritas Backup Exec before 21.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backup Exec
NVD
CVSS 3.1
9.8
EPSS
64.9%
CVE-2021-27876 HIGH POC KEV THREAT Act Now

An issue was discovered in Veritas Backup Exec before 21.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backup Exec
NVD
CVSS 3.1
8.1
EPSS
13.4%
CVE-2017-8895 CRITICAL POC PATCH THREAT Act Now

In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 67.1%.

Denial Of Service Memory Corruption Use After Free RCE Backup Exec
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
67.1%
Threat
5.5
CVE-2013-4678 LOW Monitor

The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified. Rated low severity (CVSS 2.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Backup Exec
NVD
CVSS 2.0
2.7
EPSS
0.1%
CVE-2013-4677 MEDIUM This Month

Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 uses weak permissions (Everyone: Read and Everyone: Change) for backup data files, which allows local users to obtain sensitive. Rated medium severity (CVSS 4.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Backup Exec
NVD
CVSS 2.0
4.3
EPSS
0.1%
CVE-2013-4676 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Backup Exec
NVD
CVSS 2.0
4.3
EPSS
0.5%
CVE-2013-4575 HIGH This Week

Heap-based buffer overflow in the utility program in the Linux agent in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote attackers to cause a denial of service (agent. Rated high severity (CVSS 7.9). No vendor patch available.

Buffer Overflow Denial Of Service RCE Backup Exec
NVD
CVSS 2.0
7.9
EPSS
1.3%
EPSS 0% CVSS 7.8
HIGH This Week

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Backup Exec
NVD
EPSS 0% CVSS 7.1
HIGH This Week

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Backup Exec
NVD
EPSS 24% CVSS 8.8
HIGH POC KEV THREAT Act Now

An issue was discovered in Veritas Backup Exec before 21.2. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backup Exec
NVD
EPSS 65% CVSS 9.8
CRITICAL POC KEV THREAT Emergency

An issue was discovered in Veritas Backup Exec before 21.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backup Exec
NVD
EPSS 13% CVSS 8.1
HIGH POC KEV THREAT Act Now

An issue was discovered in Veritas Backup Exec before 21.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Backup Exec
NVD
EPSS 67% 5.5 CVSS 9.8
CRITICAL POC PATCH THREAT Act Now

In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 67.1%.

Denial Of Service Memory Corruption Use After Free +2
NVD Exploit-DB
EPSS 0% CVSS 2.7
LOW Monitor

The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified. Rated low severity (CVSS 2.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Backup Exec
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 uses weak permissions (Everyone: Read and Everyone: Change) for backup data files, which allows local users to obtain sensitive. Rated medium severity (CVSS 4.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Backup Exec
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Backup Exec
NVD
EPSS 1% CVSS 7.9
HIGH This Week

Heap-based buffer overflow in the utility program in the Linux agent in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote attackers to cause a denial of service (agent. Rated high severity (CVSS 7.9). No vendor patch available.

Buffer Overflow Denial Of Service RCE +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy