CVE-2018-18652
First published: Thu Oct 25 2018(Updated: )
A remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 allows authenticated administrators to execute arbitrary commands as root. This issue was caused by insufficient filtering of user provided input.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Veritas NetBackup Appliance | <3.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-18652?
CVE-2018-18652 is a remote command execution vulnerability in Veritas NetBackup Appliance before 3.1.2 that allows authenticated administrators to execute arbitrary commands as root.
How does CVE-2018-18652 affect Veritas NetBackup Appliance?
CVE-2018-18652 affects Veritas NetBackup Appliance versions before 3.1.2.
What is the severity of CVE-2018-18652?
The severity of CVE-2018-18652 is critical.
What is the impact of CVE-2018-18652?
CVE-2018-18652 allows authenticated administrators to execute arbitrary commands as root.
How can I fix CVE-2018-18652?
To fix CVE-2018-18652, update Veritas NetBackup Appliance to version 3.1.2 or later.
- collector/nvd-index
- agent/type
- agent/event
- agent/author
- agent/severity
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/veritas
- canonical/veritas netbackup appliance