A remote attacker could exploit this issue and inject SQL code to potentially impact the availability of your backup data, cause information disclosure, or execute arbitrary SQL code.
This issue is addressed by updating NetBackup to version 10.0.9180. The update fixes this issue. NetBackup provides backups for Microsoft Exchange Server mailbox data, NetWare Servers, SQL databases, and more. A SQL injection issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL injection attack affecting idm, nbars, and SLP manager code. A remote attacker could exploit this issue and inject SQL code to potentially impact the availability of your backup data, cause information disclosure, or execute arbitrary SQL code. This issue is addressed by updating NetBackup to version 10.0.9180. The update fixes this issue.
NetBackup Virtual Appliance
NetBackup is a backup and disaster recovery solution that runs on virtual machines, as well as physical machines. A remote attacker could exploit this issue and inject SQL code to potentially impact the availability of your backup data, cause information disclosure, or execute arbitrary SQL code. This issue is addressed by updating NetBackup to version 10.0.9180. The update fixes this issue.
NetBackup High Availability and Disaster Recovery Solutions
NetBackup provides high-availability and disaster recovery solutions for your company. Not only can it do the basic things like backing up servers, but it also has a service called Recovery Manager that allows you to recover from a backup in real time. This tool helps organizations recover from major incidents like SQL database corruption, hard disk failures, and disk space exhaustion.
This issue is addressed by updating NetBackup to version 10.0.9180. The update fixes this issue.
Timeline
Published on: 10/03/2022 15:15:00 UTC
Last modified on: 10/04/2022 21:00:00 UTC