CVE-2024-33671

An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. The Backup Exec Deduplication Multi-threaded Streaming Agent can be leveraged to perform arbitrary file deletion on protected files.

Published: Apr 26, 2024
Updated: Jul 1, 2025
CVE: CVE-2024-33671
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.1
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
veritas / backup_exec	21.0	23.0

https://www.veritas.com/support/en_US/security/VTS24-002#H1

Vulnerability Database

289,697

CVE-2024-33671