One Security Vulnerabilities and Issues — One CVE List

Lucene search

VeeamOne

5 matches found

CVE•added 2020/07/28 6:15 p.m.•52 views

CVE-2020-15418

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Veeam ONE 10.0.0.750_20200415. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SSRSReport class. Due to the improper restriction of XML Externa...

7.8CVSS7.3AI score0.21848EPSS

CVE•added 2024/09/07 5:15 p.m.•51 views

CVE-2024-42020

A Cross-site-scripting (XSS) vulnerability exists in the Reporter Widgets that allows HTML injection.

7.3CVSS6.5AI score0.00201EPSS

CVE•added 2020/07/28 6:15 p.m.•50 views

CVE-2020-15419

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Veeam ONE 10.0.0.750_20200415. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Reporter_ImportLicense class. Due to the improper restriction of...

7.8CVSS7.3AI score0.23768EPSS

CVE•added 2024/09/07 5:15 p.m.•50 views

CVE-2024-42021

An improper access control vulnerability allows an attacker with valid access tokens to access saved credentials.

7.5CVSS6.8AI score0.00068EPSS

CVE•added 2024/09/07 5:15 p.m.•49 views

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files.

7.5CVSS6.8AI score0.00076EPSS