Authentication Bypass Vulnerability in Veritas APTARE
CVE-2020-27157

8.1HIGH

Key Information:

Vendor: Veritas
Status: Aptare
Vendor: CVE Published:; 15 October 2020

What is CVE-2020-27157?

Prior to version 10.5, Veritas APTARE contained a vulnerability that allowed an unauthenticated user to bypass the standard login process by providing certain authentication credentials. This security flaw could enable unauthorized individuals to access the application's data and functionalities linked to specific user accounts, potentially leading to significant data exposure and compromise.

References

https://www.veritas.com/content/support/en_US/security/VT...

x_refsource_MISC

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2020
Vulnerability Reserved
Oct 15, 2020