36 matches found
EUVD-2024-37505
Malicious code in bioql PyPI...
EUVD-2024-37506
Malicious code in bioql PyPI...
EUVD-2024-38201
Malicious code in bioql PyPI...
EUVD-2024-38200
Malicious code in bioql PyPI...
EUVD-2024-39885
Malicious code in bioql PyPI...
CVE-2024-38650
An authentication bypass vulnerability can allow a low privileged attacker to access the NTLM hash of service account on the VSPC server...
CVE-2024-42449
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to remove arbitrary files on the VSPC server machine...
CVE-2024-42448
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution RCE on the VSPC server machine...
CVE-2024-39714
A code injection vulnerability that permits a low-privileged user to upload arbitrary files to the server, leading to remote code execution on VSPC server...
VulnCheck KEV: CVE-2024-42448
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution RCE on the VSPC server machine...
CVE-2024-42448
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution RCE on the VSPC server machine...
CVE-2024-42448
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution RCE on the VSPC server machine...
CVE-2024-42448
CVE-2024-42448 affects Veeam Service Provider Console (VSPC). From the VSPC management agent machine, when the agent is authorized on the server, an attacker can achieve Remote Code Execution (RCE) on the VSPC server. The CVSS v3.0 base score is 9.9 (CRITICAL) with Network attack vector, Low atta...
CVE-2024-42448
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution RCE on the VSPC server machine...
CVE-2024-42449
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to remove arbitrary files on the VSPC server machine...
CVE-2024-42449
CVE-2024-42449 affects Veeam Service Provider Console (VSPC) prior to version 8.1.0.21999. From the VSPC management agent machine, if the agent is authorized on the server, an attacker can delete arbitrary files on the VSPC server and may also leak the server service account’s NTLM hash. The issu...
CVE-2024-42449
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to remove arbitrary files on the VSPC server machine...
CVE-2024-42449
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to remove arbitrary files on the VSPC server machine...
CVE-2024-38651
A code injection vulnerability can allow a low-privileged user to overwrite files on that VSPC server, which can lead to remote code execution on VSPC server...
CVE-2024-38650
An authentication bypass vulnerability can allow a low privileged attacker to access the NTLM hash of service account on the VSPC server...