Lucene search
K

354 matches found

Veeam
Veeam
added 2024/10/11 12:0 a.m.18 views

Granular sudo Permissions for Management of Veeam Agent for Oracle Solaris

Purpose This article provides examples of granular 'sudo' configuration for the Linux account that will be used by Veeam Backup & Replication when managing Veeam Agent for Oracle Solaris deployments with a Protection Group. Solution The following granular sudo permissions were tested with Veeam...

6.5AI score
Exploits0Affected Software1
Veeam
Veeam
added 2024/10/11 12:0 a.m.16 views

Guest OS File Restore Fails on Self-Referencing Junction Points

Challenge Using Guest OS File Restore to restore a folder containing a junction point that redirects back to the initial folder fails with the error: Win32 error:The name of the file cannot be resolved by the system. Code: 1921 For example, attempting to restore a user's AppData folder the restor...

6.8AI score
Exploits0Affected Software2
Veeam
Veeam
added 2024/10/11 12:0 a.m.22 views

Granular sudo Permissions for Management of Veeam Agent for IBM AIX

Purpose This article provides examples of granular 'sudo' configuration for the Linux account that will be used by Veeam Backup & Replication when managing Veeam Agent for IBM AIX deployments with a Protection Group. Solution The following granular sudo permissions were tested with Veeam Agent fo...

6.5AI score
Exploits0Affected Software2
Veeam
Veeam
added 2024/09/26 12:0 a.m.65 views

Granular sudo Permissions for Management of Hardened Repository

Purpose This article documents the granular sudo permissions required to allow Veeam Backup & Replication to deploy and manage a Hardened Repository. Solution Account Requirements The Linux user account used by Veeam Backup & Replication to deploy and manage the Hardened Repository must use the...

7AI score
Exploits0Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2024/09/09 2:33 p.m.43 views

Multiple Vulnerabilities in Veeam Backup & Replication

On Wednesday, September 4, 2024, backup and recovery software provider Veeam released their September security bulletin disclosing various vulnerabilities in Veeam products. One of the higher-severity vulnerabilities included in the bulletin is CVE-2024-40711, a critical unauthenticated remote co...

9.8CVSS10AI score0.88193EPSS
Exploits7
NVD
NVD
added 2024/09/07 5:15 p.m.40 views

CVE-2024-42019

A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user interaction and data collected from Veeam Backup & Replication...

9CVSS0.00513EPSS
Exploits0References1
NVD
NVD
added 2024/09/07 5:15 p.m.31 views

CVE-2024-40710

A series of related high-severity vulnerabilities, the most notable enabling remote code execution RCE as the service account and extraction of sensitive information savedcredentials and passwords. Exploiting these vulnerabilities requires a user who has been assigned a low-privileged role within...

8.8CVSS0.0112EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/07 4:11 p.m.41 views

CVE-2024-40710

A series of related high-severity vulnerabilities, the most notable enabling remote code execution RCE as the service account and extraction of sensitive information savedcredentials and passwords. Exploiting these vulnerabilities requires a user who has been assigned a low-privileged role within...

8.8CVSS0.0112EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/07 4:11 p.m.28 views

CVE-2024-42019

A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user interaction and data collected from Veeam Backup & Replication...

9CVSS6.8AI score0.00513EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/07 4:11 p.m.30 views

CVE-2024-40710

A series of related high-severity vulnerabilities, the most notable enabling remote code execution RCE as the service account and extraction of sensitive information savedcredentials and passwords. Exploiting these vulnerabilities requires a user who has been assigned a low-privileged role within...

8.8CVSS7.6AI score0.0112EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/07 4:11 p.m.41 views

CVE-2024-42019

A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user interaction and data collected from Veeam Backup & Replication...

9CVSS0.00513EPSS
Exploits0References1
CVE
CVE
added 2024/09/07 4:11 p.m.83 views

CVE-2024-40710

CVE-2024-40710 affects Veeam Backup & Replication (12.x and earlier). The core issue is a set of high-severity vulnerabilities allowing a low-privileged user to cause remote code execution as the service account and to extract saved credentials/passwords. The CVE is documented with a high impact ...

8.8CVSS7.7AI score0.0112EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/09/07 12:0 a.m.3 views

Veeam Backup & Replication 安全漏洞

Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication version 12.1.2.172 and prior versions 12, which stems from a vulnerability that allows a user with a low-privilege role assigned in Veeam Backup &...

7.8CVSS7.7AI score0.00315EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/07 12:0 a.m.5 views

Veeam Backup & Replication 安全漏洞

Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication version 12.1.2.172 and prior versions 12, which stems from the inclusion of an untrusted data deserialization issue that could lead to remote code executio...

9.8CVSS10AI score0.88193EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2024/09/04 12:0 a.m.12 views

PT-2024-9564 · Veeam · Veeam Backup & Replication

Name of the Vulnerable Software and Affected Versions: Veeam Backup & Replication affected versions not specified Description: An improper certificate validation vulnerability in TLS certificate validation allows an attacker on the same network to intercept sensitive credentials during restore...

8.3CVSS9.4AI score0.00336EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2024/09/04 12:0 a.m.3 views

PT-2024-9557 · Veeam · Veeam Backup & Replication

Name of the Vulnerable Software and Affected Versions: Veeam Backup & Replication affected versions not specified Description: The issue is related to an improper input validation vulnerability. This vulnerability allows a low-privileged user to remotely remove files on the system with permission...

8.5CVSS7.7AI score0.00829EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/09/04 12:0 a.m.4 views

PT-2024-5903

Name of the Vulnerable Software and Affected Versions Veeam Backup & Replication versions prior to 12.2.0.334 Description Veeam Backup & Replication is affected by a critical deserialization of untrusted data vulnerability that allows for unauthenticated remote code execution RCE. This flaw,...

9.8CVSS10AI score0.88193EPSS
Exploits3References259
Veeam
Veeam
added 2024/09/03 12:0 a.m.17 views

Veeam Backup & Replication Install Fails with: "A later version of Veeam Explorer for Microsoft Exchange is already installed."

Challenge When attempting to install Veeam Backup & Replication version 12.1, 12.2, or 12.3 on a machine where Veeam Backup for Microsoft 365 version 8 is already installed, the Veeam Backup & Replication install fails with the error: A later version of Veeam Explorer for Microsoft Exchange is...

7AI score
Exploits0Affected Software2
Positive Technologies
Positive Technologies
added 2024/08/02 12:0 a.m.5 views

PT-2024-9471 · Veeam · Veeam Backup & Replication

Name of the Vulnerable Software and Affected Versions: Veeam Backup & Replication affected versions not specified Description: A vulnerability in the Veeam Backup & Replication platform allows a low-privileged user with a specific role to exploit a method that updates critical configuration...

9CVSS8.3AI score0.0038EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/08/02 12:0 a.m.8 views

PT-2024-9559 · Veeam · Veeam Backup & Replication

Name of the Vulnerable Software and Affected Versions: Veeam Backup & Replication affected versions not specified Description: A vulnerability in Veeam Backup & Replication allows low-privileged users to leak all saved credentials in plaintext. This is achieved by calling a series of methods over...

7.7CVSS7.3AI score0.00275EPSS
Exploits0References9
Rows per page
Query Builder