Vulnerabilities > CVE-2024-39718 - Unspecified vulnerability in Veeam Backup & Replication

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

veeam

NVD

Published: 2024-09-07

Updated: 2025-05-08

Summary

An improper input validation vulnerability that allows a low-privileged user to remotely remove files on the system with permissions equivalent to those of the service account.

Vulnerable Configurations

Part	Description	Count
Application	Veeam Veeam Veeam Backup & Replication 12.0.0.1420 Veeam Veeam Backup & Replication 12.1.0.2131 Veeam Veeam Backup & Replication 12.1.1.56 Veeam Veeam Backup & Replication 12.1.2.172	4

References

https://www.veeam.com/kb4649