Lucene search

[email protected]CVE-2017-6400

HistoryMar 02, 2017 - 6:59 a.m.

CVE-2017-6400

2017-03-0206:59:00

[email protected]

web.nvd.nist.gov

veritas

netbackup

cve-2017-6400

nvd

security issue

privileged command execution

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged command execution on NetBackup Server and Client can occur (on the local system).

Affected configurations

NVD

Node

veritasaccessRange≤7.2.1

veritasnetbackupRange≤7.7.1

veritasnetbackup_applianceRange≤2.7.1

CPENameOperatorVersion
veritas:accessveritas accessle7.2.1
veritas:netbackupveritas netbackuple7.7.1
veritas:netbackup_applianceveritas netbackup appliancele2.7.1

CPE	Name	Operator	Version
veritas:access	veritas access	le	7.2.1
veritas:netbackup	veritas netbackup	le	7.7.1
veritas:netbackup_appliance	veritas netbackup appliance	le	2.7.1

References

www.securityfocus.com/bid/96484

www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue2

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for CVE-2017-6400

nvd1 prion1 cvelist1 nessus1