CNVD-2021-95592

Vulnerability from cnvd - Published: 2021-12-09
VLAI Severity ?
Title
Veritas Enterprise Vault代码问题漏洞
Description
Veritas Enterprise Vault是美国Veritas公司的一款企业级文件保护、归档自动化软件。 Veritas Enterprise Vault 14.1.2 及之前版本中存在安全漏洞,Enterprise Vault 应用程序启动时会启动多个服务,这些服务在随机 .NET Remoting TCP端口上侦听来自客户端应用程序的命令。由于 .NET Remoting服务固有的反序列化行为,攻击者可以利用Enterprise Vault服务器上的TCP远程服务和本地IPC服务。
Severity
Patch Name
Veritas Enterprise Vault代码问题漏洞的补丁
Patch Description
Veritas Enterprise Vault是美国Veritas公司的一款企业级文件保护、归档自动化软件。 Veritas Enterprise Vault 14.1.2 及之前版本中存在安全漏洞,Enterprise Vault 应用程序启动时会启动多个服务,这些服务在随机 .NET Remoting TCP端口上侦听来自客户端应用程序的命令。由于 .NET Remoting服务固有的反序列化行为,攻击者可以利用Enterprise Vault服务器上的TCP远程服务和本地IPC服务。 目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description

目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://www.veritas.com/content/support/en_US/security/VTS21-003

Reference
https://www.veritas.com/content/support/en_US/security/VTS21-003
Impacted products
Name
Veritas Veritas Enterprise Vault <=14.1.2
Show details on source website
To clipboard 

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-44682"
    }
  },
  "description": "Veritas Enterprise Vault\u662f\u7f8e\u56fdVeritas\u516c\u53f8\u7684\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u6587\u4ef6\u4fdd\u62a4\u3001\u5f52\u6863\u81ea\u52a8\u5316\u8f6f\u4ef6\u3002\n\nVeritas Enterprise Vault 14.1.2 \u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0cEnterprise Vault \u5e94\u7528\u7a0b\u5e8f\u542f\u52a8\u65f6\u4f1a\u542f\u52a8\u591a\u4e2a\u670d\u52a1\uff0c\u8fd9\u4e9b\u670d\u52a1\u5728\u968f\u673a .NET Remoting TCP\u7aef\u53e3\u4e0a\u4fa6\u542c\u6765\u81ea\u5ba2\u6237\u7aef\u5e94\u7528\u7a0b\u5e8f\u7684\u547d\u4ee4\u3002\u7531\u4e8e .NET Remoting\u670d\u52a1\u56fa\u6709\u7684\u53cd\u5e8f\u5217\u5316\u884c\u4e3a\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528Enterprise Vault\u670d\u52a1\u5668\u4e0a\u7684TCP\u8fdc\u7a0b\u670d\u52a1\u548c\u672c\u5730IPC\u670d\u52a1\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.veritas.com/content/support/en_US/security/VTS21-003",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-95592",
  "openTime": "2021-12-09",
  "patchDescription": "Veritas Enterprise Vault\u662f\u7f8e\u56fdVeritas\u516c\u53f8\u7684\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u6587\u4ef6\u4fdd\u62a4\u3001\u5f52\u6863\u81ea\u52a8\u5316\u8f6f\u4ef6\u3002\r\n\r\nVeritas Enterprise Vault 14.1.2 \u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0cEnterprise Vault \u5e94\u7528\u7a0b\u5e8f\u542f\u52a8\u65f6\u4f1a\u542f\u52a8\u591a\u4e2a\u670d\u52a1\uff0c\u8fd9\u4e9b\u670d\u52a1\u5728\u968f\u673a .NET Remoting TCP\u7aef\u53e3\u4e0a\u4fa6\u542c\u6765\u81ea\u5ba2\u6237\u7aef\u5e94\u7528\u7a0b\u5e8f\u7684\u547d\u4ee4\u3002\u7531\u4e8e .NET Remoting\u670d\u52a1\u56fa\u6709\u7684\u53cd\u5e8f\u5217\u5316\u884c\u4e3a\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528Enterprise Vault\u670d\u52a1\u5668\u4e0a\u7684TCP\u8fdc\u7a0b\u670d\u52a1\u548c\u672c\u5730IPC\u670d\u52a1\u3002 \u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Veritas Enterprise Vault\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Veritas Veritas Enterprise Vault \u003c=14.1.2"
  },
  "referenceLink": "https://www.veritas.com/content/support/en_US/security/VTS21-003",
  "serverity": "\u4e2d",
  "submitTime": "2021-12-08",
  "title": "Veritas Enterprise Vault\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.