Description
An issue was discovered in Veritas Backup Exec before 21.2. It supports multiple authentication schemes: SHA authentication is one of these. This authentication scheme is no longer used in current versions of the product, but hadn't yet been disabled. An attacker could remotely exploit this scheme to gain unauthorized access to an Agent and execute privileged commands.
CVSS breakdown
CVSS 3.1
Attack Complexity
Low
Attack Vector
Network
Availability
None
Confidentiality
High
Integrity
Low
Privileges Required
None
Scope
Unchanged
User Interaction
None
Exploits & PoCs
- nucleiVeritas Backup Exec - Broken Authenticationby pussycat0x,DhiyaneshDK