Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Fixed vulnerabilities in several Veeam products.

šŸ—“ļøĀ 11 Oct 2024Ā 09:18:53Reported byĀ NCSCTypeĀ 
ncsc
Ā ncscšŸ”—Ā advisories.ncsc.nlšŸ‘Ā 5Ā Views

Veeam fixed vulnerabilities in several products; CVE-2024-40711 enables unauthenticated code execution.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2024-40711
7 Sep 202400:00
ā€“attackerkb
Information Security Automation		Veeam B&R RCE vulnerability CVE-2024-40711 is exploited in attacks
13 Oct 202409:41
ā€“avleonov
Information Security Automation		September episode of ā€œIn The Trend of VMā€: 7 CVEs, fake reCAPTCHA, lebanese pagers, VM and IT annual bonuses
21 Oct 202413:01
ā€“avleonov
BDU FSTEC		The vulnerability of Veeam Backup & Replicationā€™s protection mechanisms for cloud, virtual, and physical systems stems from errors in privilege management, allowing attackers to execute arbitrary code.
6 Sep 202400:00
ā€“bdu_fstec
BDU FSTEC		The vulnerability of the file loading function of the backup and recovery software for remote and cloud-based Veeam Service Provider Console (VSPC) customers allows a hacker to execute arbitrary code on the VSPC server.
9 Sep 202400:00
ā€“bdu_fstec
BDU FSTEC		The vulnerability of the Veeam ONE monitoring software, related to deficiencies in access control, allows a perpetrator to execute arbitrary code on systems where the Veeam ONE Agent is installed.
9 Sep 202400:00
ā€“bdu_fstec
BDU FSTEC		The vulnerability of the Reporter Widget component in the Veeam ONE monitoring software allows a attacker to execute arbitrary HTML code.
20 Sep 202400:00
ā€“bdu_fstec
BDU FSTEC		The vulnerability of the Veeam ONE monitoring software, related to inadequate access control, allows a hacker to bypass existing security restrictions and gain unauthorized access to protected information.
20 Sep 202400:00
ā€“bdu_fstec
BDU FSTEC		The vulnerability of the application software interface of the backup and recovery software for Veeam Service Provider Console (VSPC) for remote and cloud customers allows a perpetrator to execute arbitrary code.
20 Sep 202400:00
ā€“bdu_fstec
BDU FSTEC		The vulnerability of the NTLM protocol implementation in the backup and recovery software for remote and cloud-based Veeam Service Provider Console (VSPC) users allows a hacker to bypass authentication procedures and gain unauthorized access to protected information.
20 Sep 202400:00
ā€“bdu_fstec
Rows per page
Vulners
Node
veeamoneMatch11
OR
veeamoneMatch12
OR
veeamveeam_service_provider_consoleMatch8

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
11 Oct 2024 09:18Current
8High risk
Vulners AI Score8
CVSS 39.9
CVSS 3.19.8
EPSS0.88193
SSVC
Veeam vulnerabilitiesBackup and replicationVeeam ONEService Provider ConsoleVeeam AgentCVE 2024 40711Ransomware risk
5