CVE-2023-28759
First published: Thu Mar 23 2023(Updated: )
An issue was discovered in Veritas NetBackup before 10.0 on Windows. A vulnerability in the way the client validates the path to a DLL prior to loading may allow a lower-level user to elevate privileges and compromise the system.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Veritas NetBackup | <10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue in Veritas NetBackup on Windows?
The vulnerability ID for this issue in Veritas NetBackup on Windows is CVE-2023-28759.
What is the severity of CVE-2023-28759 vulnerability?
The severity of CVE-2023-28759 vulnerability is high with a severity value of 7.8.
What is the affected software for CVE-2023-28759 vulnerability?
The affected software for CVE-2023-28759 vulnerability is Veritas NetBackup version up to exclusive 10.0 on Windows.
How does CVE-2023-28759 vulnerability allow privilege escalation?
CVE-2023-28759 vulnerability allows privilege escalation by exploiting the way the client validates the path to a DLL prior to loading.
Is there a fix available for CVE-2023-28759 vulnerability?
Yes, there is a fix available for CVE-2023-28759 vulnerability. Please refer to the Veritas security advisory for more information.
- collector/nvd-index
- agent/weakness
- agent/author
- agent/tags
- agent/event
- agent/references
- agent/severity
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/veritas
- canonical/veritas netbackup