Arbitrary Command Execution in Veritas Resiliency Platform by Veritas

CVE-2019-14417

What is CVE-2019-14417?

A vulnerability in Veritas Resiliency Platform (VRP) versions prior to 3.4 HF1 allows an attacker with user-level access to execute arbitrary commands with root privileges within the VRP virtual machine. This flaw, which is associated with DNS functionality, poses significant risks as it could enable unauthorized actions that compromise the platform’s integrity and security.

References