Lucene search
K

6 matches found

OSV
OSV
added 2024/12/04 2:15 a.m.4 views

CVE-2024-42456

A vulnerability in Veeam Backup & Replication platform allows a low-privileged user with a specific role to exploit a method that updates critical configuration settings, such as modifying the trusted client certificate used for authentication on a specific port. This can result in unauthorized...

8.8CVSS5.8AI score0.0038EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/04 1:6 a.m.18 views

CVE-2024-42456

A vulnerability in Veeam Backup & Replication platform allows a low-privileged user with a specific role to exploit a method that updates critical configuration settings, such as modifying the trusted client certificate used for authentication on a specific port. This can result in unauthorized...

8.8CVSS7.1AI score0.0038EPSS
Exploits0References1
CVE
CVE
added 2024/12/04 1:6 a.m.74 views

CVE-2024-42456

CVE-2024-42456 affects Veeam Backup & Replication . A low-privileged user with a specific role can exploit a method with insufficient permission checks to modify critical configuration settings (e.g., trusted client certificate on a port), potentially allowing calls to privileged methods and init...

8.8CVSS7.1AI score0.0038EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/12/04 1:6 a.m.36 views

CVE-2024-42456

A vulnerability in Veeam Backup & Replication platform allows a low-privileged user with a specific role to exploit a method that updates critical configuration settings, such as modifying the trusted client certificate used for authentication on a specific port. This can result in unauthorized...

8.8CVSS0.0038EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:18 a.m.4 views

SUSE CVE-2015-4100

Puppet Enterprise 3.7.x and 3.8.0 might allow remote authenticated users to manage certificates for arbitrary nodes by leveraging a client certificate trusted by the master, aka a "Certificate Authority Reverse Proxy Vulnerability."...

6.8CVSS6.9AI score0.00703EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.38 views

Fedora Core 2 : httpd-2.0.50-2.1 (2004-204)

This update includes the latest stable release of Apache httpd 2.0, including security fixes for a remotely triggerable memory leak CVE-2004-0493, and a buffer overflow in modssl which can be triggered only by a trusted client certificate with a long subject DN field CVE-2004-0488. Note that...

7.5CVSS5.7AI score0.84784EPSS
Exploits1References1
Rows per page
Query Builder