Remote Code Execution Vulnerability in Veritas Backup Exec
CVE-2021-27877

9.8CRITICAL

Key Information:

Vendor: Veritas
Status: Backup Exec
Vendor: CVE Published:; 1 March 2021

Badges

💰 Ransomware👾 Exploit Exists🦅 CISA Reported

Summary

A vulnerability in Veritas Backup Exec allows attackers to exploit outdated SHA authentication support, which has not been disabled in versions prior to 21.2. By leveraging this weakness, an attacker can gain unauthorized access to an Agent, enabling them to execute privileged commands remotely. It is essential for users of affected versions to upgrade to mitigate the risk associated with this security flaw.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed as being exploited and is known by the CISA as enabling ransomware campaigns.

The CISA's recommendation is: Apply updates per vendor instructions.

References

https://www.veritas.com/content/support/en_US/security/VT...

x_refsource_MISC

http://packetstormsecurity.com/files/168506/Veritas-Backu...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

💰
Used in Ransomware
Apr 7, 2023
👾
Exploit known to exist
Apr 7, 2023
🦅
CISA Reported
Apr 7, 2023
Vulnerability published
Mar 1, 2021
Vulnerability Reserved
Mar 1, 2021