Unrated severityNVD Advisory· Published Mar 24, 2023· Updated Feb 19, 2025
CVE-2023-28818
CVE-2023-28818
Description
An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files (aptare.jar or upgrademanager.zip) on the Portal server, which might then be downloaded and installed on collectors.
Affected products
2- Veritas/NetBackup IT Analyticsdescription
- Range: <11.2.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.