Primary

Context

Veritas NetBackup Unquoted Service Path Vulnerability in INET Daemon Allowing Arbitrary Code Execution

Vulnerability

A vulnerability exists in Veritas NetBackup version 7.0, specifically within the NetBackup INET Daemon service. This unquoted service path vulnerability allows local users to execute arbitrary code. The issue arises from the unquoted path in 'C:\Program Files\Veritas\NetBackup\bin\bpinetd.exe', which can be exploited to inject malicious code that executes with elevated LocalSystem privileges.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution with elevated privileges.

Reproduction

The vulnerability can be reproduced by exploiting the unquoted service path of the NetBackup INET Daemon. A local user must place malicious code in a location that the operating system will execute during application startup or system reboot, taking advantage of the elevated privileges of the NetBackup service.

Added: Feb 1, 2026, 3:22 PM

Updated: Feb 1, 2026, 3:22 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.4

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.4

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Veritas NetBackup Unquoted Service Path Vulnerability in INET Daemon Allowing Arbitrary Code Execution

Vulnerability

Impact

Reproduction

Affected Products

Veritas NetBackup

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating