Vulnerability Details : CVE-2008-4339
Unspecified vulnerability in the Java Administration GUI (jnbSA) in Symantec Veritas NetBackup Server and NetBackup Enterprise Server 5.1 before MP7, 6.0 before MP7, and 6.5 before 6.5.2 allows remote authenticated users to gain privileges via unknown attack vectors related to "bpjava* binaries."
Exploit prediction scoring system (EPSS) score for CVE-2008-4339
Probability of exploitation activity in the next 30 days: 1.37%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 84 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-4339
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.5
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:P/A:P |
8.0
|
6.4
|
NIST |
CWE ids for CVE-2008-4339
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-4339
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239908-1
-
http://www.symantec.com/avcenter/security/Content/2008.09.24a.html
Patch
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/45386
- http://www.vupen.com/english/advisories/2008/2672
-
http://www.securitytracker.com/id?1020928
-
http://www.securityfocus.com/bid/31221
Products affected by CVE-2008-4339
- cpe:2.3:a:symantec:netbackup_enterprise_server:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:netbackup_enterprise_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:netbackup_enterprise_server:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:netbackup_server:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:netbackup_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:netbackup_server:5.1:*:*:*:*:*:*:*