RSS   Vulnerabilities for 'Aptare'   RSS

2020-05-14
 
CVE-2020-12877

CWE-200
 

 
Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.

 
 
CVE-2020-12875

CWE-863
 

 
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.

 
 
CVE-2020-12874

CWE-863
 

 
Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.

 

 >>> Vendor: Veritas 12 Products
Bare metal restore
Netbackup
Netbackup appliance
Netbackup appliance firmware
Access
System recovery
Backup exec
Resiliency platform
Access appliance
Flex appliance
Infoscale
Aptare


Copyright 2020, cxsecurity.com

 

Back to Top