Veritas Veritas Enterprise storage and data protection

  1. Vendors
  2. Veritas

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Veritas product.

RSS Feeds for Veritas security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Veritas products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Veritas Sorted by Most Security Vulnerabilities since 2018

Veritas Netbackup44 vulnerabilities

Veritas Netbackup Appliance23 vulnerabilities

Veritas Enterprise Vault16 vulnerabilities

Veritas Backup Exec7 vulnerabilities

Veritas Infoscale Operations Manager5 vulnerabilities

Veritas Ediscovery Platform1 vulnerability

Veritas Netbackup Appliance Firmware1 vulnerability

Veritas Data Insight1 vulnerability

Veritas Netbackup It Analytics1 vulnerability

Veritas Netbackup Opscenter1 vulnerability

Veritas Netbackup Snapshot Manager1 vulnerability

Veritas Aptare It Analytics1 vulnerability

Known Exploited Veritas Vulnerabilities

The following Veritas vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.

Title Description Added
Veritas Backup Exec Agent File Access Vulnerability Veritas Backup Exec (BE) Agent contains a file access vulnerability that could allow an attacker to specially craft input parameters on a data management protocol command to access files on the BE Agent machine.
CVE-2021-27876 Exploit Probability: 0.6% 		April 7, 2023
Veritas Backup Exec Agent Improper Authentication Vulnerability Veritas Backup Exec (BE) Agent contains an improper authentication vulnerability that could allow an attacker unauthorized access to the BE Agent via SHA authentication scheme.
CVE-2021-27877 Exploit Probability: 1.0% 		April 7, 2023
Veritas Backup Exec Agent Command Execution Vulnerability Veritas Backup Exec (BE) Agent contains a command execution vulnerability that could allow an attacker to use a data management protocol command to execute a command on the BE Agent machine.
CVE-2021-27878 Exploit Probability: 1.0% 		April 7, 2023

By the Year

In 2025 there have been 0 vulnerabilities in Veritas. Last year, in 2024 Veritas had 17 security vulnerabilities published. Right now, Veritas is on track to have less security vulnerabilities in 2025 than it did last year.




Year Vulnerabilities Average Score
2025 0 0.00
2024 17 8.12
2023 10 7.52
2022 49 7.62
2021 9 9.50
2020 5 8.30
2019 7 7.46
2018 1 7.20

It may take a day or so for new Veritas vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Veritas Security Vulnerabilities

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53913 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53915 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53914 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53912 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53911 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53909 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

Veritas Enterprise Vault Remote Code Execution via .NET Remoting Deserialization

CVE-2024-53910 9.8 - Critical - November 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Marshaling, Unmarshaling

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24696

CVE-2024-52942 5.4 - Medium - November 18, 2024

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24696. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user.

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24697

CVE-2024-52943 5.4 - Medium - November 18, 2024

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24697. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user.

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24698

CVE-2024-52944 5.4 - Medium - November 18, 2024

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24698. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user.

An issue was discovered in Veritas NetBackup before 10.5

CVE-2024-52945 7.8 - High - November 18, 2024

An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup components running on a Windows Operating System. If a user executes specific NetBackup commands or an attacker uses social engineering techniques to impel the user to execute the commands, a malicious DLL could be loaded, resulting in execution of the attacker's code in the user's security context.

An XSS vulnerability was discovered in Veritas Data Insight before 7.1

CVE-2024-47854 6.1 - Medium - October 04, 2024

An XSS vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated user without sanitization if executed by that user.

XSS

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391

CVE-2024-33671 7.1 - High - April 26, 2024

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. The Backup Exec Deduplication Multi-threaded Streaming Agent can be leveraged to perform arbitrary file deletion on protected files.

An issue was discovered in Veritas NetBackup before 10.4

CVE-2024-33672 7.1 - High - April 26, 2024

An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform arbitrary file deletion on protected files.

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391

CVE-2024-33673 - April 26, 2024

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Improper access controls allow for DLL Hijacking in the Windows DLL Search path.

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path

CVE-2024-28222 9.8 - Critical - March 07, 2024

In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and execute a custom file.

Directory traversal

A vulnerability was discovered in Veritas eDiscovery Platform before 10.2.5

CVE-2024-27283 7.2 - High - February 22, 2024

A vulnerability was discovered in Veritas eDiscovery Platform before 10.2.5. The application administrator can upload potentially malicious files to arbitrary locations on the server on which the application is installed.

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1

CVE-2023-40256 9.8 - Critical - August 11, 2023

A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the confidentiality and integrity of messages controlling the backup and restore jobs, and could result in the service becoming unavailable. This impacts only the jobs controlling the backup and restore activities, and does not allow access to (or deletion of) the backup snapshot data itself. This vulnerability is confined to the NetBackup Snapshot Manager feature and does not impact the RabbitMQ instance on the NetBackup primary servers.

Improper Certificate Validation

The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410

CVE-2023-38404 8.8 - High - July 17, 2023

The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server.

Unrestricted File Upload

In Veritas NetBackup Appliance before 4.1.0.1 MR3, insecure permissions may

CVE-2023-37237 7.2 - High - June 29, 2023

In Veritas NetBackup Appliance before 4.1.0.1 MR3, insecure permissions may allow an authenticated Admin to bypass shell restrictions and execute arbitrary operating system commands via SSH.

Incorrect Permission Assignment for Critical Resource

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410

CVE-2023-32569 9.8 - Critical - May 10, 2023

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The InfoScale VIOM web application is vulnerable to SQL Injection in some of the areas of the application. This allows attackers (who must have admin credentials) to submit arbitrary SQL commands on the back-end database to create, read, update, or delete any sensitive data stored in the database.

SQL Injection

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410

CVE-2023-32568 7.2 - High - May 10, 2023

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The VIOM web application does not validate user-supplied data and appends it to OS commands and internal binaries used by the application. An attacker with root/administrator level privileges can leverage this to read sensitive data stored on the servers, modify data or server configuration, and delete data or application configuration.

Shell injection

Veritas Appliance v4.1.0.1 is affected by Host Header Injection attacks

CVE-2023-26788 6.1 - Medium - April 10, 2023

Veritas Appliance v4.1.0.1 is affected by Host Header Injection attacks. HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the request to be sent to a completely different Domain/IP address.

XSS

Veritas NetBackUp OpsCenter Version 9.1.0.1 is vulnerable to Reflected Cross-site scripting (XSS)

CVE-2023-26789 6.1 - Medium - April 05, 2023

Veritas NetBackUp OpsCenter Version 9.1.0.1 is vulnerable to Reflected Cross-site scripting (XSS). The Web App fails to adequately sanitize special characters. By leveraging this issue, an attacker is able to cause arbitrary HTML and JavaScript code to be executed in a user's browser.

XSS

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0

CVE-2023-28818 5.3 - Medium - March 24, 2023

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files (aptare.jar or upgrademanager.zip) on the Portal server, which might then be downloaded and installed on collectors.

Improper Verification of Cryptographic Signature

An issue was discovered in Veritas NetBackup before 8.3.0.2

CVE-2023-28758 7.1 - High - March 23, 2023

An issue was discovered in Veritas NetBackup before 8.3.0.2. BPCD allows an unprivileged user to specify a log file path when executing a NetBackup command. This can be used to overwrite existing NetBackup log files.

An issue was discovered in Veritas NetBackup before 10.0 on Windows

CVE-2023-28759 7.8 - High - March 23, 2023

An issue was discovered in Veritas NetBackup before 10.0 on Windows. A vulnerability in the way the client validates the path to a DLL prior to loading may allow a lower-level user to elevate privileges and compromise the system.

DLL preloading

An issue was discovered in Veritas NetBackup Flex Scale through 3.0

CVE-2022-46410 8.8 - High - December 04, 2022

An issue was discovered in Veritas NetBackup Flex Scale through 3.0. An attacker with non-root privileges may escalate privileges to root by using specific commands.

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100

CVE-2022-46411 8.8 - High - December 04, 2022

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. A default password is persisted after installation and may be discovered and used to escalate privileges.

authentification

An issue was discovered in Veritas NetBackup Flex Scale through 3.0

CVE-2022-46412 8.8 - High - December 04, 2022

An issue was discovered in Veritas NetBackup Flex Scale through 3.0. A non-privileged user may escape a restricted shell and execute privileged commands.

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100

CVE-2022-46413 8.8 - High - December 04, 2022

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Authenticated remote command execution can occur via the management portal.

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100

CVE-2022-46414 9.8 - Critical - December 04, 2022

An issue was discovered in Veritas NetBackup Flex Scale through 3.0 and Access Appliance through 8.0.100. Unauthenticated remote command execution can occur via the management portal.

The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users (

CVE-2022-45461 8.8 - High - November 17, 2022

The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users (that have been explicitly added to the auth.conf file) to execute arbitrary commands as root.

Shell injection

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products

CVE-2022-42299 7.5 - High - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to a denial of service attack through the DiscoveryService service.

An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products

CVE-2022-42308 7.1 - High - October 03, 2022

An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can delete arbitrary files by leveraging a path traversal in the pbx_exchange registration code.

Directory traversal

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products

CVE-2022-42307 9.8 - Critical - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity (XXE) Injection attack through the DiscoveryService service.

XXE

An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products

CVE-2022-42306 5.5 - Medium - October 03, 2022

An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbx_exchange during registration and cause a NULL pointer exception, effectively crashing the pbx_exchange process.

NULL Pointer Dereference

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products

CVE-2022-42305 7.5 - High - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to a Path traversal attack through the DiscoveryService service.

Directory traversal

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products

CVE-2022-42304 9.8 - Critical - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting idm, nbars, and SLP manager code.

SQL Injection

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products

CVE-2022-42303 9.8 - Critical - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a second-order SQL Injection attack affecting the NBFSMCLIENT service by leveraging CVE-2022-42302.

SQL Injection

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products

CVE-2022-42301 8.8 - High - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity (XXE) injection attack through the nbars process.

XXE

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products

CVE-2022-42300 6.5 - Medium - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server nbars process can be crashed resulting in a denial of service. (Note: the watchdog service will automatically restart the process.)

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products

CVE-2022-42302 9.8 - Critical - October 03, 2022

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting the NBFSMCLIENT service.

SQL Injection

Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration

CVE-2022-41320 6.5 - Medium - September 23, 2022

Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration. This vulnerability could provide a Windows user (who has sufficient privileges) to access a network file system that they were not authorized to access.

Insecure Storage of Sensitive Information

A Reflected Cross-Site Scripting (XSS) vulnerability affects the Veritas Desktop Laptop Option (DLO) application login page (aka the DLOServer/restore/login.jsp URI)

CVE-2022-41319 6.1 - Medium - September 23, 2022

A Reflected Cross-Site Scripting (XSS) vulnerability affects the Veritas Desktop Laptop Option (DLO) application login page (aka the DLOServer/restore/login.jsp URI). This affects versions before 9.8 (e.g., 9.1 through 9.7).

XSS

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2

CVE-2022-36986 9.8 - Critical - July 28, 2022

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with unauthenticated access could remotely execute arbitrary commands on a NetBackup Primary server.

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2

CVE-2022-36985 7.8 - High - July 28, 2022

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with unprivileged local access to a Windows NetBackup Primary server could potentially escalate their privileges.

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2

CVE-2022-36984 6.5 - Medium - July 28, 2022

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could remotely trigger a denial of service attack against a NetBackup Primary server.

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2

CVE-2022-36987 6.5 - Medium - July 28, 2022

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could arbitrarily write files to a NetBackup Primary server.

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2

CVE-2022-36988 8.8 - High - July 28, 2022

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup OpsCenter server, NetBackup Primary server, or NetBackup Media server could remotely execute arbitrary commands on a NetBackup Primary server or NetBackup Media server.

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.