cvedb.io
CVE-2023-32568
HIGH · CVSS 7.2
EPSS exploitation probability: 0%
Published 2023-05-10T05:15:11.990 · Last modified 2026-06-17T05:59:08.273

Summary

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The VIOM web application does not validate user-supplied data and appends it to OS commands and internal binaries used by the application. An attacker with root/administrator level privileges can leverage this to read sensitive data stored on the servers, modify data or server configuration, and delete data or application configuration.

Affected products

veritas — infoscale_operations_manager

Does this affect you?

Add your gear to cvedb and we'll alert you only when veritas ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.