CVE-2022-36955

Published Jul 27, 2022

Last updated 2 years ago

CVSS high 8.4

Overview

Description: In Veritas NetBackup, an attacker with unprivileged local access to a NetBackup Client may send specific commands to escalate their privileges. This affects 8.0 through 8.1.2, 8.2, 8.3 through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.4
Impact score: 5.9
Exploitability score: 2.5
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:veritas:netbackup:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DC735CA-9312-4C5C-8FD1-8821A423B19E",
            "versionEndIncluding": "8.1.2",
            "versionStartIncluding": "8.0"
          },
          {
            "criteria": "cpe:2.3:a:veritas:netbackup:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3564F63C-D9E3-429A-BCBA-2F29FBEB3C3F",
            "versionEndIncluding": "8.3.0.2",
            "versionStartIncluding": "8.3.0.0"
          },
          {
            "criteria": "cpe:2.3:a:veritas:netbackup:8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3678D77D-D641-47C6-92BA-FE124D645F47"
          },
          {
            "criteria": "cpe:2.3:a:veritas:netbackup:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3A9DC13-0464-4507-A5A2-91BEF7E55AA1"
          },
          {
            "criteria": "cpe:2.3:a:veritas:netbackup:9.1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F3A7C9B-44E3-4DEF-B0CE-DC2F00564F61"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References