CVE-2022-45461 HIGH

CVE-2022-45461

Vendor N/A
Product n/a
Published November 17, 2022
Last update April 29, 2025

CVSS base score

7.5/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AC:H/AV:N/A:H/C:H/I:H/PR:L/S:U/UI:N

What the vulnerability does

01Description

The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users (that have been explicitly added to the auth.conf file) to execute arbitrary commands as root.

Key dates

02Disclosure timeline

November 17, 2022 CVE published
April 29, 2025 Record updated