CVE-2021-27877
Veritas Backup Exec Agent Improper Authentication Vulnerability
CVSS
—
No CVSS
EPSS
64.9%
p99
KEV
YES
Apr 7, 2023
Exploit Today
80
0-100
Published: — · Last modified: —
64.9%EPSS · 30 days64.9%
2026-06-302026-07-16
Product
Veritas / Backup Exec Agent
Vulnerability
Veritas Backup Exec Agent Improper Authentication Vulnerability
Added to KEV
Apr 7, 2023
Remediate by
Apr 28, 2023
Known ransomware use
Yes
Summary description
Veritas Backup Exec (BE) Agent contains an improper authentication vulnerability that could allow an attacker unauthorized access to the BE Agent via SHA authentication scheme.
Required action
Apply updates per vendor instructions.
Notes
https://www.veritas.com/support/en_US/security/VTS21-001; https://nvd.nist.gov/vuln/detail/CVE-2021-27877