CVE-2022-36998

N/A

An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 (and related NetBackup products). An attacker with authenticated access to a NetBackup Client could remotely trigger a stack-based buffer overflow on the NetBackup Primary server, resulting in a denial of service.

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

N/A

Veritas NetBackup 缓冲区错误漏洞

Veritas NetBackup是美国Veritas公司的一个应用于为企业环境的提供备份、恢复功能的存储服务。该软件支持对勒索软件的检测和对元数据、虚拟环境等环境数据的备份保护。 Veritas NetBackup存在安全漏洞，经过身份验证的攻击者利用该漏洞可以远程触发 NetBackup 主服务器上基于堆栈的缓冲区溢出，从而导致拒绝服务。以下版本受到影响：8.1.x至8.1.2、8.2、8.3.x至8.3.0.2、9.x至9.0.0.1、9.1.x至9.1.0.1版本。

N/A

N/A