7 matches found
CVE-2024-29855
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator...
Exploit for Use of Hard-coded Credentials in Veeam Recovery_Orchestrator
CVE-2024-29855 Veeam Recovery Orchestrator Authentication Bypa...
CVE-2024-29855
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator...
CVE-2024-29855
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator...
CVE-2024-29855
CVE-2024-29855 affects Veeam Recovery Orchestrator (VRO) Web Console. The root cause is a hard-coded JWT secret that enables authentication bypass, allowing an attacker to gain administrative access to the VRO web UI. Affected releases include VRO versions prior to the patched builds. According t...
CVE-2024-29855
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator...
Veeam Recovery Orchestrator Vulnerability (CVE-2024-29855)
Veeam Software Security Commitment VeeamĀ® is committed to ensuring its products protect customers from potential risks. As part of that commitment, we operate a Vulnerability Disclosure Program VDP for all Veeam products and perform extensive internal code audits. When a vulnerability is...