CVE-2020-37045 – NetBackup 7.0 – ‘NetBackup INET Daemon’ Unquoted Service Path

CVE ID : CVE-2020-37045

Published : Feb. 1, 2026, 2:38 p.m. | 36 minutes ago

Description : Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:Program FilesVeritasNetBackupbinbpinetd.exe to inject malicious code that would execute with elevated LocalSystem privileges.

Severity: 8.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…