Vulnerabilites related to Veeam - Backup and Recovery
cve-2024-40709
Vulnerability from cvelistv5
Published
2024-09-07 16:11
Modified
2024-12-04 15:01
Severity ?
EPSS score ?
Summary
A missing authorization vulnerability allows a local low-privileged user on the machine to escalate their privileges to root level.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4649 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.1.2 ≤ 12.1.2 |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:veeam:agent:*:*:*:*:*:linux:*:*", ], defaultStatus: "unaffected", product: "agent", vendor: "veeam", versions: [ { lessThanOrEqual: "6.1.2.1781", status: "affected", version: "6", versionType: "semver", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-40709", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-09-09T15:05:48.581860Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-862", description: "CWE-862 Missing Authorization", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-12-04T15:01:02.058Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.1.2", status: "affected", version: "12.1.2", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "A missing authorization vulnerability allows a local low-privileged user on the machine to escalate their privileges to root level.", }, ], metrics: [ { cvssV3_0: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2024-09-07T16:11:22.216Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4649", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2024-40709", datePublished: "2024-09-07T16:11:22.216Z", dateReserved: "2024-07-09T01:04:07.424Z", dateUpdated: "2024-12-04T15:01:02.058Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-40714
Vulnerability from cvelistv5
Published
2024-09-07 16:11
Modified
2024-09-09 14:03
Severity ?
EPSS score ?
Summary
An improper certificate validation vulnerability in TLS certificate validation allows an attacker on the same network to intercept sensitive credentials during restore operations.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4649 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.1.2 ≤ 12.1.2 |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:veeam:backup_\\&_replication:*:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "backup_\\&_replication", vendor: "veeam", versions: [ { lessThanOrEqual: "12.1.2.172", status: "affected", version: "12", versionType: "semver", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-40714", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-09-09T14:00:23.609127Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-295", description: "CWE-295 Improper Certificate Validation", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-09-09T14:03:17.836Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.1.2", status: "affected", version: "12.1.2", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "An improper certificate validation vulnerability in TLS certificate validation allows an attacker on the same network to intercept sensitive credentials during restore operations.", }, ], metrics: [ { cvssV3_0: { baseScore: 8.3, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2024-09-07T16:11:22.237Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4649", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2024-40714", datePublished: "2024-09-07T16:11:22.237Z", dateReserved: "2024-07-09T01:04:07.426Z", dateUpdated: "2024-09-09T14:03:17.836Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-40713
Vulnerability from cvelistv5
Published
2024-09-07 16:11
Modified
2024-09-09 14:22
Severity ?
EPSS score ?
Summary
A vulnerability that allows a user who has been assigned a low-privileged role within Veeam Backup & Replication to alter Multi-Factor Authentication (MFA) settings and bypass MFA.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4649 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.1.2 ≤ 12.1.2 |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:veeam:backup_\\&_replication:*:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "backup_\\&_replication", vendor: "veeam", versions: [ { lessThanOrEqual: "12.1.2.172", status: "affected", version: "12", versionType: "semver", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-40713", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-09-09T14:20:54.568516Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-287", description: "CWE-287 Improper Authentication", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-09-09T14:22:01.961Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.1.2", status: "affected", version: "12.1.2", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "A vulnerability that allows a user who has been assigned a low-privileged role within Veeam Backup & Replication to alter Multi-Factor Authentication (MFA) settings and bypass MFA.", }, ], metrics: [ { cvssV3_0: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2024-09-07T16:11:22.216Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4649", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2024-40713", datePublished: "2024-09-07T16:11:22.216Z", dateReserved: "2024-07-09T01:04:07.426Z", dateUpdated: "2024-09-09T14:22:01.961Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-40712
Vulnerability from cvelistv5
Published
2024-09-07 16:11
Modified
2024-09-09 15:18
Severity ?
EPSS score ?
Summary
A path traversal vulnerability allows an attacker with a low-privileged account and local access to the system to perform local privilege escalation (LPE).
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4649 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.1.2 ≤ 12.1.2 |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:veeam:backup_\\&_replication:*:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "backup_\\&_replication", vendor: "veeam", versions: [ { lessThanOrEqual: "12.1.2.172", status: "affected", version: "12", versionType: "semver", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-40712", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-09-09T15:17:19.696138Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-22", description: "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-09-09T15:18:23.506Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.1.2", status: "affected", version: "12.1.2", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "A path traversal vulnerability allows an attacker with a low-privileged account and local access to the system to perform local privilege escalation (LPE).", }, ], metrics: [ { cvssV3_0: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2024-09-07T16:11:22.203Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4649", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2024-40712", datePublished: "2024-09-07T16:11:22.203Z", dateReserved: "2024-07-09T01:04:07.425Z", dateUpdated: "2024-09-09T15:18:23.506Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2025-23120
Vulnerability from cvelistv5
Published
2025-03-20 15:11
Modified
2025-03-20 16:13
Severity ?
EPSS score ?
Summary
A vulnerability allowing remote code execution (RCE) for domain users.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4724 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.3 ≤ 12.3 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2025-23120", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-03-20T15:53:52.128095Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-502", description: "CWE-502 Deserialization of Untrusted Data", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-03-20T16:13:01.660Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, references: [ { tags: [ "third-party-advisory", ], url: "https://labs.watchtowr.com/by-executive-order-we-are-banning-blacklists-domain-level-rce-in-veeam-backup-replication-cve-2025-23120/", }, ], title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.3", status: "affected", version: "12.3", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "A vulnerability allowing remote code execution (RCE) for domain users.", }, ], metrics: [ { cvssV3_0: { baseScore: 9.9, baseSeverity: "CRITICAL", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2025-03-20T15:11:39.456Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4724", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2025-23120", datePublished: "2025-03-20T15:11:39.456Z", dateReserved: "2025-01-11T01:00:00.618Z", dateUpdated: "2025-03-20T16:13:01.660Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-39718
Vulnerability from cvelistv5
Published
2024-09-07 16:11
Modified
2024-11-01 19:18
Severity ?
EPSS score ?
Summary
An improper input validation vulnerability that allows a low-privileged user to remotely remove files on the system with permissions equivalent to those of the service account.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4649 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.1.2 ≤ 12.1.2 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2024-39718", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-09-09T16:28:49.290660Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { description: "CWE-noinfo Not enough information", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-11-01T19:18:00.417Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.1.2", status: "affected", version: "12.1.2", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "An improper input validation vulnerability that allows a low-privileged user to remotely remove files on the system with permissions equivalent to those of the service account.", }, ], metrics: [ { cvssV3_0: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2024-09-07T16:11:22.180Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4649", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2024-39718", datePublished: "2024-09-07T16:11:22.180Z", dateReserved: "2024-06-28T01:04:08.821Z", dateUpdated: "2024-11-01T19:18:00.417Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-40710
Vulnerability from cvelistv5
Published
2024-09-07 16:11
Modified
2024-09-09 16:28
Severity ?
EPSS score ?
Summary
A series of related high-severity vulnerabilities, the most notable enabling remote code execution (RCE) as the service account and extraction of sensitive information (savedcredentials and passwords). Exploiting these vulnerabilities requires a user who has been assigned a low-privileged role within Veeam Backup & Replication.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.veeam.com/kb4649 |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Backup and Recovery |
Version: 12.1.2 ≤ 12.1.2 |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:veeam:backup_\\&_replication:*:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "backup_\\&_replication", vendor: "veeam", versions: [ { lessThanOrEqual: "12.1.2.172", status: "affected", version: "12", versionType: "semver", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-40710", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-09-09T16:24:07.727007Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-522", description: "CWE-522 Insufficiently Protected Credentials", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-09-09T16:28:11.865Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Backup and Recovery", vendor: "Veeam", versions: [ { lessThanOrEqual: "12.1.2", status: "affected", version: "12.1.2", versionType: "semver", }, ], }, ], descriptions: [ { lang: "en", value: "A series of related high-severity vulnerabilities, the most notable enabling remote code execution (RCE) as the service account and extraction of sensitive information (savedcredentials and passwords). Exploiting these vulnerabilities requires a user who has been assigned a low-privileged role within Veeam Backup & Replication.", }, ], metrics: [ { cvssV3_0: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, }, ], providerMetadata: { dateUpdated: "2024-09-07T16:11:22.182Z", orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", shortName: "hackerone", }, references: [ { url: "https://www.veeam.com/kb4649", }, ], }, }, cveMetadata: { assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1", assignerShortName: "hackerone", cveId: "CVE-2024-40710", datePublished: "2024-09-07T16:11:22.182Z", dateReserved: "2024-07-09T01:04:07.424Z", dateUpdated: "2024-09-09T16:28:11.865Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }