Security News > 2024 > September > Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues

Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues
2024-09-05 16:05

Veeam has shipped security updates to address a total of 18 security flaws impacting its software products, including five critical vulnerabilities that could result in remote code execution. The list of shortcomings is below - CVE-2024-40711 (CVSS score: 9.8) - A vulnerability in Veeam Backup & Replication that allows unauthenticated remote code execution. CVE-2024-42024 (CVSS score: 9.1


News URL

https://thehackernews.com/2024/09/veeam-releases-security-updates-to-fix.html

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-09-07 CVE-2024-42024 Unspecified vulnerability in Veeam ONE 12.0.0.2498/12.0.1.2591
A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed.
network
low complexity
veeam
8.8
2024-09-07 CVE-2024-40711 Deserialization of Untrusted Data vulnerability in Veeam Backup & Replication 12.0.0.1420
A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE).
network
low complexity
veeam CWE-502
critical
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Veeam 11 0 13 23 7 43