Vulnerabilities > Veeam > Veeam Backup Replication > 12.1.0.2131
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-07 | CVE-2024-40710 | Unspecified vulnerability in Veeam Backup & Replication A series of related high-severity vulnerabilities, the most notable enabling remote code execution (RCE) as the service account and extraction of sensitive information (savedcredentials and passwords). | 8.8 |
| 2024-09-07 | CVE-2024-40712 | Unspecified vulnerability in Veeam Backup & Replication A path traversal vulnerability allows an attacker with a low-privileged account and local access to the system to perform local privilege escalation (LPE). | 7.8 |
| 2024-09-07 | CVE-2024-40713 | Unspecified vulnerability in Veeam Backup & Replication A vulnerability that allows a user who has been assigned a low-privileged role within Veeam Backup & Replication to alter Multi-Factor Authentication (MFA) settings and bypass MFA. | 7.8 |
| 2024-09-07 | CVE-2024-40714 | Unspecified vulnerability in Veeam Backup & Replication An improper certificate validation vulnerability in TLS certificate validation allows an attacker on the same network to intercept sensitive credentials during restore operations. | 8.3 |