RSS   Vulnerabilities for 'Aptare'   RSS

2020-10-15
 
CVE-2020-27157

CWE-294
 

 
Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the targeted user account.

 
 
CVE-2020-27156

CWE-863
 

 
Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerability could allow for remote code execution by an unauthenticated user.

 
2020-05-14
 
CVE-2020-12877

CWE-200
 

 
Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.

 
 
CVE-2020-12875

CWE-863
 

 
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.

 
 
CVE-2020-12874

CWE-863
 

 
Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.

 

 >>> Vendor: Veritas 15 Products
Access
Backup exec
Bare metal restore
Netbackup
System recovery
Netbackup appliance
Netbackup appliance firmware
Resiliency platform
Access appliance
Flex appliance
Infoscale
Aptare
Desktop and laptop option
Enterprise vault
Infoscale operations manager


Copyright 2024, cxsecurity.com

 

Back to Top