Veritas Backup Exec Remote Agent 21.0.x, 21.1.x, 21,2.x, 21,3.x, 21.4.x, 22.0.x, 22.1.x, 22.2.x Multiple Vulnerabilities

high Nessus Plugin ID 194906

Synopsis

A remote data protection agent installed on the remote host is affected by multiple vulnerabilities.

Description

The version of Vertias Backup Exec Remote Agent installed on the remote Windows host is 21.0.x, 21.1.x, 21,2.x, 21,3.x, 21.4.x, 22.0.x, 22.1.x or 22.2.x prior to 22.2 HotFix 917391. It is therefore affectewd by multiple vulnerabilities:

- An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. The Backup Exec Deduplication Multi- threaded Streaming Agent can be leveraged to perform arbitrary file deletion on protected files.
(CVE-2024-33761)

- An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Improper access controls allow for DLL Hijacking in the Windows DLL Search path. (CVE-2024-33673)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Veritas Backup Exec Remote Agent version 22.2 HotFix 917391, version 23.0 or later.

See Also

https://www.veritas.com/support/en_US/security/VTS24-002#H2

Plugin Details

Severity: High

ID: 194906

File Name: veritas_backup_exec_VTS24-002.nasl

Version: 1.2

Type: local

Agent: windows

Family: Windows

Published: 5/2/2024

Updated: 5/3/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2024-33673

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:veritas:backup_exec_remote_agent

Required KB Items: SMB/Registry/Enumerated, installed_sw/Veritas Backup Exec Remote Agent

Exploit Ease: No known exploits are available

Patch Publication Date: 4/15/2024

Vulnerability Publication Date: 4/15/2024

Reference Information

CVE: CVE-2024-33671, CVE-2024-33673

IAVA: 2024-A-0263