Security News > 2024 > December > Veeam warns of critical RCE bug in Service Provider Console

Veeam warns of critical RCE bug in Service Provider Console

2024-12-03 18:07

Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. [...]

News URL

https://www.bleepingcomputer.com/news/security/veeam-warns-of-critical-rce-bug-in-service-provider-console/

#console #critical #RCE #veeam

Related news

Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console (source)
Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449) (source)
Exploit released for critical WhatsUp Gold RCE flaw, patch now (source)
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast (source)
Apache issues patches for critical Struts 2 RCE bug (source)
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Veeam		11	0	8	9	7	24

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.