2 matches found
Multiple Vulnerabilities in Veeam Backup & Replication
On Wednesday, September 4, 2024, backup and recovery software provider Veeam released their September security bulletin disclosing various vulnerabilities in Veeam products. One of the higher-severity vulnerabilities included in the bulletin is CVE-2024-40711, a critical unauthenticated remote co...
CVE-2024-40713
CVE-2024-40713 affects Veeam Backup & Replication. A low-privileged user can alter MFA settings and bypass MFA, enabling access with compromised credentials. The vulnerability is documented in the vendor security bulletin and related advisories, with CVSS scores around 8.8 (high) for the MFA bypa...