CVE-2023-28758: 
Veritas NetBackup Client vulnerability analysis and mitigation

An issue was discovered in Veritas NetBackup before 8.3.0.2. BPCD allows an unprivileged user to specify a log file path when executing a NetBackup command. This vulnerability (CVE-2023-28758) was disclosed on March 23, 2023, affecting Veritas NetBackup primary server, media server, and clients version 8.2 and earlier (Vendor Advisory).

The vulnerability allows an unprivileged user to create or modify arbitrary files when executing a NetBackup command through BPCD. The vulnerability has been assigned a CVSS v3.1 Base Score of 7.1 HIGH with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H. The vulnerability is related to improper privilege management (CWE-269) (NVD).

This vulnerability can be exploited to overwrite existing NetBackup log files and potentially elevate privileges to compromise the system. The impact is particularly severe in environments where the primary server or any media servers are running versions below 8.3 (Vendor Advisory).

The primary mitigation is to upgrade to NetBackup version 8.3 or later. For environments unable to upgrade, Veritas recommends two mitigation steps: 1) Remove non-administrator access from all NetBackup servers - users who are not system administrators or NetBackup administrators should not be able to log in or execute commands on the NetBackup primary and media server, and 2) Review and remove SERVER and MEDIASERVER entries in the bp.conf/host properties for systems that are not at NetBackup 8.3 or higher ([Vendor Advisory](https://www.veritas.com/content/support/enUS/security/VTS23-003)).