An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The NetBackup Primary server is vulnerable to an XML External Entity (XXE) Injection attack through the DiscoveryService service.
References
Link | Resource |
---|---|
https://www.veritas.com/content/support/en_US/security/VTS22-012#M2 | Patch Vendor Advisory |
Configurations
Information
Published : 2022-10-03 08:15
Updated : 2022-10-04 14:08
NVD link : CVE-2022-42307
Mitre link : CVE-2022-42307
JSON object : View
CWE
CWE-611
Improper Restriction of XML External Entity Reference
Products Affected
veritas
- netbackup