Lucene search
HackeroneCVE-2024-42024HistorySep 07, 2024 - 5:15 p.m.
CVE-2024-42024
2024-09-0717:15:14
CWE-250
hackerone
web.nvd.nist.gov
30
veeam one agent
vulnerability
remote code execution
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
7.8
Confidence
Low
EPSS
0
Percentile
9.5%
A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed.
Affected configurations
Node
veeamoneRange≤12.1
CNA Affected
[
{
"defaultStatus": "unaffected",
"vendor": "Veeam",
"product": "One",
"versions": [
{
"version": "12.1",
"status": "affected",
"lessThanOrEqual": "12.1",
"versionType": "semver"
}
]
}
]References
Related
cvelist
cvelist
CVE-2024-42024
2024-09-07 16:11:22
vulnrichment
vulnrichment
CVE-2024-42024
2024-09-07 16:11:22
nvd
nvd
CVE-2024-42024
2024-09-07 17:15:14
thn
thn
Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues
2024-09-05 16:05:00
veeam
veeam
Veeam Security Bulletin (September 2024)
2024-09-04 00:00:00
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
7.8
Confidence
Low
EPSS
0
Percentile
9.5%
Related for CVE-2024-42024