Security News > 2024 > June > Exploit for critical Veeam auth bypass available, patch now
![Exploit for critical Veeam auth bypass available, patch now](/static/build/img/news/exploit-for-critical-veeam-auth-bypass-available-patch-now-medium.jpg)
A proof-of-concept exploit for a Veeam Backup Enterprise Manager authentication bypass flaw tracked as CVE-2024-29849 is now publicly available, making it urgent that admins apply the latest security updates.
Veeam issued a security bulletin about the critical flaw on May 21, warning about a critical vulnerability enabling remote unauthenticated attackers to log in to VBEM's web interface as any user.
The exploit involves sending a specially crafted VMware single-sign-on token to the vulnerable service using the Veeam API. The token contains an authentication request that impersonates an administrator user and an SSO service URL that Veeam, crucially, doesn't verify.
The provided exploit demonstrates all the steps to exploit the vulnerability, including setting up a callback server, sending the crafted token, and retrieving a list of file servers as proof of successful exploitation.
Exploit for critical Progress Telerik auth bypass released, patch now.
Exploit released for maximum severity Fortinet RCE bug, patch now.
News URL
Related news
- Exploit for critical Progress Telerik auth bypass released, patch now (source)
- Exploit for Veeam Recovery Orchestrator auth bypass available, patch now (source)
- Veeam warns of critical Backup Enterprise Manager auth bypass bug (source)
- Critical Veeam Backup Enterprise Manager Flaw Allows Authentication Bypass (source)
- Patch up – 4 critical bugs in ArubaOS lead to remote code execution (source)
- Week in review: Veeam fixes RCE flaw in backup management platform, Patch Tuesday forecast (source)
- Critical GitHub Enterprise Server Flaw Allows Authentication Bypass (source)
- Veeam fixes auth bypass flaw in Backup Enterprise Manager (CVE-2024-29849) (source)
- Veeam says critical flaw can't be abused to trash backups (source)
- Exploit released for maximum severity Fortinet RCE bug, patch now (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-05-22 | CVE-2024-29849 | Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface. | 0.0 |