Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 11:38 p.m.11 views

CVE-2024-40711

A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution RCE...

9.8CVSS8.1AI score0.88193EPSS
Exploits3References1
CISA
CISA
added 2024/10/17 12:0 p.m.17 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-40711link is external Veeam Backup and Replication Deserialization Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber...

9.8CVSS7.2AI score0.88193EPSS
In wildExploits3References6
The Hacker News
The Hacker News
added 2024/10/14 8:55 a.m.59 views

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

Threat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and Fog ransomware. Cybersecurity vendor Sophos said it has been tracking a series of attacks in the past month leveraging compromised VPN credentials and CVE-2024-40711 to...

9.8CVSS8.2AI score0.88193EPSS
Exploits3
Information Security Automation
Information Security Automation
added 2024/10/13 9:41 a.m.30 views

Veeam B&R RCE vulnerability CVE-2024-40711 is exploited in attacks

Veeam B &R RCE vulnerability CVE-2024-40711is exploited in attacks. On September 24, there were no signs of this vulnerability being exploited in the wild. And on October 10, Sophos X-Ops reported that they had observed a series of attacks exploiting this vulnerability over the course of a month...

9.8CVSS7.4AI score0.88193EPSS
Exploits3
NCSC
NCSC
added 2024/10/11 9:18 a.m.8 views

Fixed vulnerabilities in several Veeam products.

Veeam has fixed vulnerabilities in several products, including Backup & Replication, ONE, Service Provider Console and Agent. UPDATE: POC code is now available online and CVE-2024-40711 has recently been actively abused to roll out ransomware. A malicious party can exploit the vulnerabilities to...

9.9CVSS8AI score0.88193EPSS
Exploits3References3
GithubExploit
GithubExploit
added 2024/09/15 5:25 p.m.797 views

Exploit for Deserialization of Untrusted Data in Veeam Veeam_Backup_\&_Replication

CVE-2024-40711 Exploit for Veeam backup and Replication Pre-A...

9.8CVSS10AI score0.88193EPSS
Exploits3
Rapid7 Blog
Rapid7 Blog
added 2024/09/09 2:33 p.m.43 views

Multiple Vulnerabilities in Veeam Backup & Replication

On Wednesday, September 4, 2024, backup and recovery software provider Veeam released their September security bulletin disclosing various vulnerabilities in Veeam products. One of the higher-severity vulnerabilities included in the bulletin is CVE-2024-40711, a critical unauthenticated remote co...

9.8CVSS10AI score0.88193EPSS
Exploits7
ATTACKERKB
ATTACKERKB
added 2024/09/07 12:0 a.m.37 views

CVE-2024-40711

A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution RCE. Recent assessments: ccondon-r7 at November 22, 2024 4:42pm UTC reported: Critical unauthenticated remote code execution vulnerability in Veeam Backup & Replication, a...

9.8CVSS9.9AI score0.88193EPSS
In wildExploits3References2
The Hacker News
The Hacker News
added 2024/09/05 4:5 p.m.56 views

Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues

Veeam has shipped security updates to address a total of 18 security flaws impacting its software products, including five critical vulnerabilities that could result in remote code execution. The list of shortcomings is below - CVE-2024-40711 CVSS score: 9.8 - A vulnerability in Veeam Backup &...

9.9CVSS10AI score0.88193EPSS
Exploits3
Circl
Circl
added 2024/09/05 7:8 a.m.12 views

CVE-2024-40711

creationtimestamp| type| source ---|---|--- 2024-09-05 07:08:09+00:00| seen| https://t.me/CyberBulletin/552 2024-09-05 17:15:55+00:00| seen| Telegram/JV0n6pLsOT6VJZsgrEwvOevCq5yhBWTCVGtt7W2JJuNFjI 2024-09-05 17:18:44+00:00| seen| https://t.me/CyberSecurityIL/55923 2024-09-05 18:58:23+00:00| seen|...

9.8CVSS7.1AI score0.88193EPSS
Exploits3References53
VulnCheck KEV
VulnCheck KEV
added 2024/04/23 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-40711

Veeam Backup and Replication contains a deserialization vulnerability allowing an unauthenticated user to perform remote code execution...

9.8CVSS7.7AI score0.88193EPSS
Exploits3References1
Rows per page
Query Builder