APTARE
by Symantec
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-36161 | 0.00 | — | 0.00 | Jan 6, 2021 | An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems, users can create directories under C:\. A low privileged user can create a directory at the configuration file locations. When the Windows system restarts, a… | |||
| CVE-2020-27156 | 0.00 | — | 0.02 | Oct 15, 2020 | Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerability could allow for remote code execution by an unauthenticated user. | |||
| CVE-2020-27157 | 0.00 | — | 0.01 | Oct 15, 2020 | Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the… | |||
| CVE-2020-12874 | 0.00 | — | 0.01 | May 14, 2020 | Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server. | |||
| CVE-2020-12875 | 0.00 | — | 0.01 | May 14, 2020 | Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application. | |||
| CVE-2020-12877 | 0.00 | — | 0.01 | May 14, 2020 | Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication. | |||
| CVE-2020-12876 | 0.00 | — | 0.01 | May 14, 2020 | Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments. |
- CVE-2020-36161Jan 6, 2021risk 0.00cvss —epss 0.00
An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems, users can create directories under C:\. A low privileged user can create a directory at the configuration file locations. When the Windows system restarts, a…
- CVE-2020-27156Oct 15, 2020risk 0.00cvss —epss 0.02
Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. This vulnerability could allow for remote code execution by an unauthenticated user.
- CVE-2020-27157Oct 15, 2020risk 0.00cvss —epss 0.01
Veritas APTARE versions prior to 10.5 included code that bypassed the normal login process when specific authentication credentials were provided to the server. An unauthenticated user could login to the application and gain access to the data and functionality accessible to the…
- CVE-2020-12874May 14, 2020risk 0.00cvss —epss 0.01
Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.
- CVE-2020-12875May 14, 2020risk 0.00cvss —epss 0.01
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.
- CVE-2020-12877May 14, 2020risk 0.00cvss —epss 0.01
Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.
- CVE-2020-12876May 14, 2020risk 0.00cvss —epss 0.01
Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.