Vulnerabilities > CVE-2021-35971 - Deserialization of Untrusted Data vulnerability in Veeam Backup & Replication 10.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
veeam
CWE-502

Summary

Veeam Backup and Replication 10 before 10.0.1.4854 P20210609 and 11 before 11.0.0.837 P20210507 mishandles deserialization during Microsoft .NET remoting.

Vulnerable Configurations

Part Description Count
Application
Veeam
2

Common Weakness Enumeration (CWE)