AVEVA Software, LLC. Security Vulnerabilities
Antivirus Exclusions for Veeam Agent for Microsoft Windows
This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of Veeam Agent for Microsoft...
2.5AI Score
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in forcedotcom SalesforceMobileSDK-Windows up to 4.x. It has been rated as critical. This issue affects the function ComputeCountSql of the file SalesforceSDK/SmartStore/Store/QuerySpec.cs. The manipulation leads to sql injection. Upgrading....
9.8CVSS
9.8AI Score
0.002EPSS
Release Information for Veeam Service Provider Console 7 Cumulative Patches
Release Information for Veeam Service Provider Console 7 Cumulative...
6.7AI Score
VM Disks Support for oVirt Incremental Backup
Backup warning: "Unable to enabled ovirt incremental backups for disk. Full scan backups will be...
7.1AI Score
1.5AI Score
In the Linux kernel, the following vulnerability has been resolved: llc: Drop support for ETH_P_TR_802_2. syzbot reported an uninit-value bug below. [0] llc supports ETH_P_802_2 (0x0004) and used to support ETH_P_TR_802_2 (0x0011), and syzbot abused the latter to trigger the bug. write$tun(r0,...
5.8AI Score
0.0004EPSS
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Group Timeline...
5.4CVSS
5.9AI Score
0.002EPSS
Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash and unresponsiveness) because some inputs cause a segfault in the Transaction class for some...
7.5CVSS
7.1AI Score
0.001EPSS
Veeam Service Provider Console Vulnerability ( CVE-2024-29212 )
Due to an unsafe deserialization method used by the Veeam Service Provider Console (VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Execution (RCE) on the VSPC server...
9.9CVSS
7.5AI Score
0.0004EPSS
Antivirus Exclusions for Veeam Service Provider Console
This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of Veeam Service Provider...
2.4AI Score
Antivirus Exclusions for Veeam ONE
This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of Veeam...
2.7AI Score
How to Collect Logs for Veeam Backup & Replication
This article provides the details on how to collect logs for Veeam Backup &...
1.9AI Score
In the Linux kernel, the following vulnerability has been resolved: llc: Drop support for ETH_P_TR_802_2. syzbot reported an uninit-value bug below. [0] llc supports ETH_P_802_2 (0x0004) and used to support ETH_P_TR_802_2 (0x0011), and syzbot abused the latter to trigger the bug. write$tun(r0,...
5.4AI Score
0.0004EPSS
Exploit for Improper Control of Interaction Frequency in Asus Gt-Axe11000 Firmware
easy-exploits The current repository contains exploits of...
7AI Score
perl-Algorithm-Diff perl-Archive-Tar perl-Archive-Zip perl-autodie perl-bignum perl-Carp perl-Compress-Bzip2 perl-Compress-Raw-Bzip2 perl-Compress-Raw-Lzma perl-Compress-Raw-Zlib [2.096-2] - Fix test broken by update in zlib on s390x - Related: RHEL-16371 perl-Config-Perl-V perl-constant...
7.8CVSS
6.8AI Score
0.0004EPSS
tpm2-tss is an open source software implementation of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2 Software Stack (TSS2). In affected versions Tss2_RC_SetHandler and Tss2_RC_Decode both index into layer_handler with an 8 bit layer number, but the array only has...
6.4CVSS
7.5AI Score
0.0004EPSS
Exploit for Off-by-one Error in F5 Nginx
CVE-2021-23017-PoC ``` pip install -r requirements.txt...
7.7CVSS
8.1AI Score
0.517EPSS
Exploit for Link Following in Git
Poc for CVE-2024-32002, the script made from the developer's...
9CVSS
9.2AI Score
0.001EPSS
Exploit for Uncontrolled Resource Consumption in Quic-Go Project Quic-Go
QUIC-attacks (CVE-2022-30591) The current repository serves...
7.5AI Score
Supply Chain Attack against Courtroom Software
No word on how this backdoor was installed: A software maker serving more than 10,000 courtrooms throughout the world hosted an application update containing a hidden backdoor that maintained persistent communication with a malicious website, researchers reported Thursday, in the latest episode...
7.2AI Score
Apple Software Update Installed
Apple Software Update, an application used to update various Apple components, is installed on the remote host. Note that this application is distributed with Apple...
1.7AI Score
Veeam Agent for Microsoft Windows Vulnerability (CVE-2024-29853)
Veeam Agent for Microsoft Windows Vulnerability...
7.8CVSS
6.8AI Score
0.0004EPSS
This issue was investigated and determined to be caused by a public folder mailbox with the parameter PerUserReadStateEnabled set to...
7AI Score
Exploit for Path Traversal in Sysaid Sysaid On-Premises
Vulnerability Details fofa: ```text ...
9.8CVSS
9.6AI Score
0.943EPSS
VanDyke Software SecureCRT Installed
VanDyke Software SecureCRT, a terminal emulation application, is installed on the remote Windows...
1.5AI Score
Release Information for Hitachi Plug-In for Veeam Backup & Replication
Release Information for Hitachi Plug-In for Veeam Backup &...
0.6AI Score
In the Linux kernel, the following vulnerability has been resolved: llc: make llc_ui_sendmsg() more robust against bonding changes syzbot was able to trick llc_ui_sendmsg(), allocating an skb with no headroom, but subsequently trying to push 14 bytes of Ethernet header [1] Like some others,...
6.2AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: llc: make llc_ui_sendmsg() more robust against bonding changes syzbot was able to trick llc_ui_sendmsg(), allocating an skb with no headroom, but subsequently trying to push 14 bytes of Ethernet header [1] Like some others,...
7.3AI Score
0.0004EPSS
Summary The certificate for a remote system in a policy-based replication partnership is not correctly validated in the GUI on IBM Storage Virtualize products. Vulnerability Details ** CVEID: CVE-2023-47700 DESCRIPTION: **IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Storage...
7.5CVSS
7.5AI Score
0.001EPSS
US bans Kaspersky, warns: “Immediately stop using that software”
The US government will ban the sale of Kaspersky antivirus products to new customers in the United States starting July 20, with a follow-on deadline to prohibit the cybersecurity company from providing users with software updates after September 29. The move follows years of allegations that the.....
7.1AI Score
HP Application Enabling Software Driver - Privileged File Overwrite
A potential security vulnerability has been identified in the HP Application Enabling Software Driver for certain HP PC products, which might allow escalation of privilege. HP is releasing software updates to mitigate this potential vulnerability. Mitigation is available in HP Application...
7.5AI Score
0.0004EPSS
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve memory contents on an affected device, which could lead to the disclosure of confidential.....
7.5CVSS
7.7AI Score
0.027EPSS
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve memory contents on an affected device, which could lead to the disclosure of confidential.....
7.5CVSS
7.1AI Score
0.027EPSS
Backup fails with: "The system cannot find the file specified." or "The device is not ready."
If the shadow copy fails to be created or is unexpectedly removed during the backup operation the backup job will...
7.1AI Score
Exchange Backup Fails With: "Failed to get folder properties. Not allowed to access Non IPM folder"
Due to a recent change in Microsoft 365, the properties of the ‘TeamsMessagesData’ folder cannot be retrieved using the EWS APIs currently used by Veeam Backup for Microsoft...
7AI Score
Microsoft Malicious Software Removal Tool Privilege Escalation Security Advisory (3057154)
This host is missing an important security update according to Microsoft advisory...
6.5AI Score
0.0005EPSS
CVE-2023-6173 SQLi in TeoSOFT Software TeoBASE
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TeoSOFT Software TeoBASE allows SQL Injection.This issue affects TeoBASE: through 27032024. NOTE: The vendor was contacted early about this disclosure but did not respond in any...
9.8CVSS
9.9AI Score
0.001EPSS
TIBCO Security Advisory: June 11, 2024 - TIBCO EBX - CVE-2024-4576
TIBCO EBX File Inclusion Vulnerability Original release date: June 11, 2024 Last revised: June 12, 2024 CVE-2024-4576 Source: TIBCO Software Inc. Products Affected TIBCO EBX versions 5.9.25 and below TIBCO EBX versions 6.1.3 HF2 and below Component affected: EBX Add-ons Description The...
6.9AI Score
0.0004EPSS
Build Numbers and Versions of Veeam Agent for IBM AIX
This KB article lists all versions of Veeam Agent for IBM AIX and their respective build...
3.1AI Score
List of Security Fixes and Improvements in Veeam Agent for Microsoft Windows
This article describes all security-related fixes and improvements introduced in each release or update of Veeam Agent for Microsoft...
2.2AI Score
Build Numbers and Versions of Veeam Backup for Salesforce
Build Numbers and Versions of Veeam Backup for...
3.2AI Score
Build Numbers and Versions of Veeam Agent for Mac
This KB article lists all versions of Veeam Agent for Mac and their respective build...
3.3AI Score
Build Numbers and Versions of Veeam Backup & Replication
This KB article lists all versions of Veeam Backup & Replication and their respective build...
3.4AI Score
Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host system. This exploit exists due to an incomplete fix that was made when this vulnerability was...
9.8CVSS
9.9AI Score
0.962EPSS
Build Numbers and Versions of Veeam Agent for Linux
This KB article lists all versions of Veeam Agent for Linux and their respective build...
3.1AI Score
Build Numbers and Versions of Veeam Agent for Oracle Solaris
This KB article lists all versions of Veeam Agent for Oracle Solaris and their respective build...
3.2AI Score
List of Security Fixes and Improvements in Veeam Backup & Replication
This article describes all security-related fixes and improvements introduced in each release or update of Veeam Backup &...
2.2AI Score
Build Numbers and Versions of Veeam Plug-ins for Enterprise Applications
Build Numbers and Versions of Veeam Plug-ins for Enterprise Applications (Veeam Plug-in for SAP HANA, Veeam Plug-in for Oracle RMAN, Veeam Plug-in for SAP on Oracle, Veeam Plug-in for Microsoft SQL...
7.4AI Score