NVD disclosure day
CVE-2021-27878
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
A flaw in Veritas Backup Exec Agent's authentication allows unauthorized access and arbitrary command execution with system privileges. This poses a risk of data compromise and operational disruption to affected organizations.
CVE-2021-27877
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
A vulnerability in Veritas Backup Exec Agent's authentication scheme allows remote, unauthorized access and command execution. Affected organizations face risks of data compromise and system control. The issue stems from an older authentication method that remained enabled.
CVE-2021-27876
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
A vulnerability in Veritas Backup Exec Agent's authentication allows unauthorized access. An attacker can then access arbitrary files with system privileges, impacting data confidentiality and integrity. The business risk involves potential data exposure or manipulation.