- Description
- In Veritas NetBackup OpsCenter, under specific conditions, an authenticated remote attacker may be able to create or modify OpsCenter user accounts. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
- Severity
- MEDIUM
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:veritas:netbackup:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F750AB23-9889-44DB-8F69-5743253CA001",
"versionEndExcluding": "8.3.0.2",
"versionStartIncluding": "8.0"
},
{
"criteria": "cpe:2.3:a:veritas:netbackup:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E3A9DC13-0464-4507-A5A2-91BEF7E55AA1"
},
{
"criteria": "cpe:2.3:a:veritas:netbackup:9.1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1F3A7C9B-44E3-4DEF-B0CE-DC2F00564F61"
}
],
"operator": "OR"
}
]
}
]