CVE Vulnerabilities

CVE-2022-36950

Published: Jul 27, 2022 | Modified: Nov 21, 2024
CVSS 3.x
9.8
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may be able to perform remote command execution through a Java classloader manipulation. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.

Affected Software

Name Vendor Start Version End Version
Netbackup Veritas 8.0 (including) 8.3.0.2 (excluding)
Netbackup Veritas 9.0 (including) 9.0 (including)
Netbackup Veritas 9.1.0.0 (including) 9.1.0.0 (including)

References