Vulnerability Details : CVE-2022-36953
In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to gain sensitive information. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.
Exploit prediction scoring system (EPSS) score for CVE-2022-36953
Probability of exploitation activity in the next 30 days: 0.08%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 33 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2022-36953
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
2.8
|
1.4
|
MITRE |
|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
2.8
|
1.4
|
NIST |
References for CVE-2022-36953
-
https://www.veritas.com/content/support/en_US/security/VTS22-009#Issue8
HotFix for Security Advisory Impacting NetBackup OpsCenter | Veritas™Vendor Advisory
Products affected by CVE-2022-36953
- cpe:2.3:a:veritas:netbackup:*:*:*:*:*:*:*:*
- cpe:2.3:a:veritas:netbackup:9.1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:veritas:netbackup:9.0:*:*:*:*:*:*:*