ZDI-CAN-14074: Veritas Enterprise Vault EVTaskGuardian Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Veritas Enterprise Vault. Authentication is not required to exploit this vulnerability. The specific flaw exists within EVTaskGuardian.exe. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the Enterprise Vault Task Controller Service.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Veritas Enterprise Vault |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-CAN-14074?
ZDI-CAN-14074 is considered a critical vulnerability due to its ability to allow remote code execution without authentication.
How do I fix ZDI-CAN-14074?
To fix ZDI-CAN-14074, apply the latest security patch provided by Veritas for the Enterprise Vault software.
What versions are affected by ZDI-CAN-14074?
ZDI-CAN-14074 affects all unpatched versions of Veritas Enterprise Vault prior to the security update.
Can ZDI-CAN-14074 be exploited remotely?
Yes, ZDI-CAN-14074 can be exploited remotely without the need for user authentication.
What component is vulnerable in ZDI-CAN-14074?
The vulnerability exists within the EVTaskGuardian.exe component of Veritas Enterprise Vault.
- agent/references
- agent/softwarecombine
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-21-1589
- alias/ZDI-CAN-14074
- alias/CVE-2021-44679
- agent/software-canonical-lookup
- agent/title
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/tags
- agent/source
- vendor/veritas
- canonical/veritas enterprise vault