CVE-2024-33673

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Apr 26, 2024
CWE ID 284

Summary

CVE-2024-33673 is a vulnerability affecting Veritas Backup Exec versions prior to 22.2 HotFix 917391. This issue involves improper access controls in the software, allowing an attacker to perform DLL Hijacking by manipulating the Windows DLL Search path. By exploiting this weakness, an attacker could execute malicious code with elevated privileges, potentially leading to data theft or system compromise. This vulnerability poses a significant risk to organizations that have not yet applied the necessary patch.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share