CVE-2021-27877: Veritas Backup Exec Agent Improper Authentication
Veritas Backup Exec Agent Improper Authentication Vulnerability. Veritas Backup Exec (BE) Agent contains an improper authentication vulnerability that could allow an attacker unauthorized access to the BE Agent via SHA authentication scheme.
- CISA KEV-listed (remediation due 2023-04-28)
- used in ransomware campaigns
- EPSS 40.3% (97.4% percentile)