Privilege Escalation in Veritas NetBackup Java Admin Console

Privilege Escalation in Veritas NetBackup Java Admin Console

CVE-2022-45461 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users (that have been explicitly added to the auth.conf file) to execute arbitrary commands as root.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.