- How many CVEs does Veritas have?
- Veritas has 144 published CVE records since 2005, including 5 in the last two years.
- How many Veritas CVEs are in CISA KEV?
- Yes — 4 of Veritas's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Veritas products have the most CVEs?
- The Veritas products with the most published CVEs are NetBackup, netbackup appliance, flex appliance, flex scale, enterprise_vault.
- What are the most common weakness types in Veritas CVEs?
- Veritas's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-502 (Deserialization of Untrusted Data), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-94 (Improper Control of Generation of Code ('Code Injection')).
- Are there public exploits for Veritas vulnerabilities?
- Yes — 11 of Veritas's CVEs have a known public exploit.
- How many critical Veritas vulnerabilities are there?
- Veritas has 59 critical and 51 high-severity CVEs.
- What is the average severity of Veritas CVEs?
- The average CVSS base score across Veritas's scored CVEs is 8.2.