CVE-2024-52945: 
Veritas NetBackup Client vulnerability analysis and mitigation

A privilege escalation vulnerability (CVE-2024-52945) was discovered in Veritas NetBackup versions before 10.5, specifically affecting NetBackup components running on Windows Operating Systems. The vulnerability was disclosed on November 18, 2024, and received a CVSS v3.1 base score of 7.8 (High) (NVD, Veritas Advisory).

The vulnerability is classified as CWE-94 (Improper Control of Generation of Code) and allows for potential code injection through DLL loading. The attack requires write access to the root drive where NetBackup is installed, enabling the installation of a malicious DLL. The vulnerability has a CVSS v3.1 vector of CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating local access, low attack complexity, no privileges required, and user interaction required (NVD).

If successfully exploited, the vulnerability allows execution of attacker's code in the user's security context. This could lead to privilege escalation and potential system compromise, affecting the confidentiality, integrity, and availability of the system (Veritas Advisory).

Veritas recommends upgrading to NetBackup Version 10.5 or applying specific hotfixes for versions 10.4.0.1, 10.3.0.1, and 10.2.0.1. For versions 10.2.0.1 and 10.1.1 primary and media servers, an alternate mitigation involves creating a 'bin' directory under the root drive where NetBackup is installed and restricting it to administrative users only (Veritas Advisory).