When product is configured in non-secure mode there is a command injection vulnerability in the availability component of Veritas InfoScale that allows an attacker to execute arbitrary commands as root/administrator.
A EEB for this issue is available for the Access Appliance 7.4.2 and 220.127.116.11 version(s) of the product. To obtain this fix please contact Veritas Technical Support and quote either this article ID or E-Track 3985885 to obtain this fix.
1) If factory reset of the appliance is done, then apply this fix after configuration of Access Appliance.
2) If you have applied this fix on Access Appliance version 7.4.2 and wants to upgrade to Access Appliance version 18.104.22.168, follow below steps:
- Uninstall the EEB (Etrack 3985885) from Access Appliance version 7.4.2
- Upgrade the Access Appliance from version 7.4.2 to 22.214.171.124
- Install the EEB (Etrack 3985885) again after upgrading the appliance to version 126.96.36.199
Was this content helpful?
Rating submitted. Please provide additional feedback (optional):