CVE-2022-36952

CVSS 8.4 HIGHEPSS 0.4%

Vexday Risk Score

21Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 8.4EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

27 Jul 2022Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

In Veritas NetBackup OpsCenter, a hard-coded credential exists that could be used to exploit the underlying VxSS subsystem. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.

CVSS:3.1/AC:L/AV:L/A:H/C:H/I:H/PR:N/S:U/UI:N

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.veritas.com/content/support/en_US/security/VTS22-009#Issue6