Search criteria
9 vulnerabilities found for recovery_orchestrator by veeam
FKIE_CVE-2024-29855
Vulnerability from fkie_nvd - Published: 2024-06-11 04:15 - Updated: 2025-07-14 20:21
Severity ?
Summary
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator
References
| URL | Tags | ||
|---|---|---|---|
| support@hackerone.com | https://www.veeam.com/kb4585 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.veeam.com/kb4585 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| veeam | recovery_orchestrator | * | |
| veeam | recovery_orchestrator | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:veeam:recovery_orchestrator:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2BD01B30-62BC-44F9-B7A9-A9C643991197",
"versionEndExcluding": "7.0.0.379",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:veeam:recovery_orchestrator:*:*:*:*:*:*:*:*",
"matchCriteriaId": "69B06FAD-A0E1-4106-BDB9-D229118B8151",
"versionEndExcluding": "7.1.0.230",
"versionStartIncluding": "7.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator"
},
{
"lang": "es",
"value": "El secreto JWT codificado permite omitir la autenticaci\u00f3n en Veeam Recovery Orchestrator"
}
],
"id": "CVE-2024-29855",
"lastModified": "2025-07-14T20:21:24.087",
"metrics": {
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.2,
"impactScore": 6.0,
"source": "support@hackerone.com",
"type": "Secondary"
}
]
},
"published": "2024-06-11T04:15:12.953",
"references": [
{
"source": "support@hackerone.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.veeam.com/kb4585"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.veeam.com/kb4585"
}
],
"sourceIdentifier": "support@hackerone.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-798"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
FKIE_CVE-2024-22022
Vulnerability from fkie_nvd - Published: 2024-02-07 01:15 - Updated: 2025-06-03 19:15
Severity ?
Summary
Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service.
References
| URL | Tags | ||
|---|---|---|---|
| support@hackerone.com | https://veeam.com/kb4541 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://veeam.com/kb4541 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| veeam | recovery_orchestrator | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:veeam:recovery_orchestrator:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CD02D9A8-0F48-428A-8FDC-2CD86F1E163C",
"versionEndExcluding": "7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service."
},
{
"lang": "es",
"value": "La vulnerabilidad CVE-2024-22022 permite a un usuario de Veeam Recovery Orchestrator al que se le ha asignado un rol con pocos privilegios acceder al hash NTLM de la cuenta de servicio utilizada por Veeam Orchestrator Server Service."
}
],
"id": "CVE-2024-22022",
"lastModified": "2025-06-03T19:15:37.243",
"metrics": {
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "support@hackerone.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-02-07T01:15:08.487",
"references": [
{
"source": "support@hackerone.com",
"tags": [
"Vendor Advisory"
],
"url": "https://veeam.com/kb4541"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://veeam.com/kb4541"
}
],
"sourceIdentifier": "support@hackerone.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-200"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
FKIE_CVE-2024-22021
Vulnerability from fkie_nvd - Published: 2024-02-07 01:15 - Updated: 2025-06-05 17:15
Severity ?
Summary
Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the one they are assigned to.
References
| URL | Tags | ||
|---|---|---|---|
| support@hackerone.com | https://veeam.com/kb4541 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://veeam.com/kb4541 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| veeam | availability_orchestrator | 4.0 | |
| veeam | disaster_recovery_orchestrator | 5.0 | |
| veeam | recovery_orchestrator | 6.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:veeam:availability_orchestrator:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7173B6BA-2373-4A7B-8B4B-700198F7FAD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:veeam:disaster_recovery_orchestrator:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5C71310C-CACF-4575-AB51-D6B747C09F73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:veeam:recovery_orchestrator:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8DD6C8BF-9CAA-44C7-B621-3EBECEEDCD0B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability\u202fCVE-2024-22021 allows\u202fa\u202fVeeam Recovery Orchestrator user with a low\u202fprivileged\u202frole (Plan\u202fAuthor)\u202fto retrieve\u202fplans\u202ffrom\u202fa\u202fScope other than the one they are assigned to. \n"
},
{
"lang": "es",
"value": "La vulnerabilidad CVE-2024-22021 permite a un usuario de Veeam Recovery Orchestrator con un rol de privilegios bajos (Autor del plan) recuperar planes de un \u00e1mbito distinto al que est\u00e1n asignados."
}
],
"id": "CVE-2024-22021",
"lastModified": "2025-06-05T17:15:26.977",
"metrics": {
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "support@hackerone.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-02-07T01:15:08.320",
"references": [
{
"source": "support@hackerone.com",
"tags": [
"Vendor Advisory"
],
"url": "https://veeam.com/kb4541"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://veeam.com/kb4541"
}
],
"sourceIdentifier": "support@hackerone.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-285"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
CVE-2024-29855 (GCVE-0-2024-29855)
Vulnerability from cvelistv5 – Published: 2024-06-11 03:55 – Updated: 2025-03-27 21:09
VLAI?
Summary
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator
Severity ?
9 (Critical)
CWE
- CWE-798 - Use of Hard-coded Credentials
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Recovery Orchestrator |
Affected:
7.1.0.230 , < 7.1.0.230
(semver)
Affected: 7.0.0.379 , < 7.0.0.379 (semver) |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:veeam:recovery_orchestrator:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "recovery_orchestrator",
"vendor": "veeam",
"versions": [
{
"status": "affected",
"version": "7.1.0.230"
},
{
"status": "affected",
"version": "7.0.0.379"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-29855",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-11T13:18:37.680576Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-27T21:09:44.177Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T01:17:58.173Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.veeam.com/kb4585"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "7.1.0.230",
"status": "affected",
"version": "7.1.0.230",
"versionType": "semver"
},
{
"lessThan": "7.0.0.379",
"status": "affected",
"version": "7.0.0.379",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator"
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-11T03:55:54.458Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://www.veeam.com/kb4585"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2024-29855",
"datePublished": "2024-06-11T03:55:54.458Z",
"dateReserved": "2024-03-21T01:04:07.090Z",
"dateUpdated": "2025-03-27T21:09:44.177Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-22021 (GCVE-0-2024-22021)
Vulnerability from cvelistv5 – Published: 2024-02-07 00:53 – Updated: 2025-06-05 16:13
VLAI?
Summary
Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the one they are assigned to.
Severity ?
6.5 (Medium)
CWE
- CWE-285 - Improper Authorization
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
| Vendor | Product | Version | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Veeam | Recovery Orchestrator |
Affected:
6 , < 6
(semver)
|
|||||||||||||||||
|
|||||||||||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-22021",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-07T15:47:31.207098Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-285",
"description": "CWE-285 Improper Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-05T16:13:58.954Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T22:35:34.706Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://veeam.com/kb4541"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Recovery Orchestrator ",
"vendor": "Veeam",
"versions": [
{
"lessThan": "6",
"status": "affected",
"version": "6",
"versionType": "semver"
}
]
},
{
"product": "Disaster Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "5",
"status": "affected",
"version": "5",
"versionType": "semver"
}
]
},
{
"product": "Availability Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "4",
"status": "affected",
"version": "4",
"versionType": "semver"
}
]
},
{
"product": "Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "7",
"status": "unaffected",
"version": "7",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability\u202fCVE-2024-22021 allows\u202fa\u202fVeeam Recovery Orchestrator user with a low\u202fprivileged\u202frole (Plan\u202fAuthor)\u202fto retrieve\u202fplans\u202ffrom\u202fa\u202fScope other than the one they are assigned to. \n"
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-02-07T00:53:30.493Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://veeam.com/kb4541"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2024-22021",
"datePublished": "2024-02-07T00:53:30.493Z",
"dateReserved": "2024-01-04T01:04:06.574Z",
"dateUpdated": "2025-06-05T16:13:58.954Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-22022 (GCVE-0-2024-22022)
Vulnerability from cvelistv5 – Published: 2024-02-07 00:53 – Updated: 2025-06-03 18:40
VLAI?
Summary
Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service.
Severity ?
CWE
- CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Veeam | Recovery Orchestrator |
Affected:
6 , < 6
(semver)
Affected: 5 , < 5 (semver) Unaffected: 7 , < 7 (semver) |
|||||||
|
|||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-22022",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-07T20:03:22.783649Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-200",
"description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-03T18:40:07.375Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T22:35:34.824Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://veeam.com/kb4541"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "6",
"status": "affected",
"version": "6",
"versionType": "semver"
},
{
"lessThan": "5",
"status": "affected",
"version": "5",
"versionType": "semver"
},
{
"lessThan": "7",
"status": "unaffected",
"version": "7",
"versionType": "semver"
}
]
},
{
"product": "Availability Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "4",
"status": "affected",
"version": "4",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service."
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/CR:X/IR:X/AR:X",
"version": "3.0"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-02-07T00:53:30.523Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://veeam.com/kb4541"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2024-22022",
"datePublished": "2024-02-07T00:53:30.523Z",
"dateReserved": "2024-01-04T01:04:06.574Z",
"dateUpdated": "2025-06-03T18:40:07.375Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-29855 (GCVE-0-2024-29855)
Vulnerability from nvd – Published: 2024-06-11 03:55 – Updated: 2025-03-27 21:09
VLAI?
Summary
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator
Severity ?
9 (Critical)
CWE
- CWE-798 - Use of Hard-coded Credentials
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Veeam | Recovery Orchestrator |
Affected:
7.1.0.230 , < 7.1.0.230
(semver)
Affected: 7.0.0.379 , < 7.0.0.379 (semver) |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:veeam:recovery_orchestrator:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "recovery_orchestrator",
"vendor": "veeam",
"versions": [
{
"status": "affected",
"version": "7.1.0.230"
},
{
"status": "affected",
"version": "7.0.0.379"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-29855",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-11T13:18:37.680576Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-27T21:09:44.177Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T01:17:58.173Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.veeam.com/kb4585"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "7.1.0.230",
"status": "affected",
"version": "7.1.0.230",
"versionType": "semver"
},
{
"lessThan": "7.0.0.379",
"status": "affected",
"version": "7.0.0.379",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator"
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-11T03:55:54.458Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://www.veeam.com/kb4585"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2024-29855",
"datePublished": "2024-06-11T03:55:54.458Z",
"dateReserved": "2024-03-21T01:04:07.090Z",
"dateUpdated": "2025-03-27T21:09:44.177Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-22021 (GCVE-0-2024-22021)
Vulnerability from nvd – Published: 2024-02-07 00:53 – Updated: 2025-06-05 16:13
VLAI?
Summary
Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the one they are assigned to.
Severity ?
6.5 (Medium)
CWE
- CWE-285 - Improper Authorization
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
| Vendor | Product | Version | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Veeam | Recovery Orchestrator |
Affected:
6 , < 6
(semver)
|
|||||||||||||||||
|
|||||||||||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-22021",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-07T15:47:31.207098Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-285",
"description": "CWE-285 Improper Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-05T16:13:58.954Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T22:35:34.706Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://veeam.com/kb4541"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Recovery Orchestrator ",
"vendor": "Veeam",
"versions": [
{
"lessThan": "6",
"status": "affected",
"version": "6",
"versionType": "semver"
}
]
},
{
"product": "Disaster Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "5",
"status": "affected",
"version": "5",
"versionType": "semver"
}
]
},
{
"product": "Availability Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "4",
"status": "affected",
"version": "4",
"versionType": "semver"
}
]
},
{
"product": "Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "7",
"status": "unaffected",
"version": "7",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability\u202fCVE-2024-22021 allows\u202fa\u202fVeeam Recovery Orchestrator user with a low\u202fprivileged\u202frole (Plan\u202fAuthor)\u202fto retrieve\u202fplans\u202ffrom\u202fa\u202fScope other than the one they are assigned to. \n"
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-02-07T00:53:30.493Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://veeam.com/kb4541"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2024-22021",
"datePublished": "2024-02-07T00:53:30.493Z",
"dateReserved": "2024-01-04T01:04:06.574Z",
"dateUpdated": "2025-06-05T16:13:58.954Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-22022 (GCVE-0-2024-22022)
Vulnerability from nvd – Published: 2024-02-07 00:53 – Updated: 2025-06-03 18:40
VLAI?
Summary
Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service.
Severity ?
CWE
- CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Veeam | Recovery Orchestrator |
Affected:
6 , < 6
(semver)
Affected: 5 , < 5 (semver) Unaffected: 7 , < 7 (semver) |
|||||||
|
|||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-22022",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-07T20:03:22.783649Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-200",
"description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-03T18:40:07.375Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T22:35:34.824Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://veeam.com/kb4541"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Recovery Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "6",
"status": "affected",
"version": "6",
"versionType": "semver"
},
{
"lessThan": "5",
"status": "affected",
"version": "5",
"versionType": "semver"
},
{
"lessThan": "7",
"status": "unaffected",
"version": "7",
"versionType": "semver"
}
]
},
{
"product": "Availability Orchestrator",
"vendor": "Veeam",
"versions": [
{
"lessThan": "4",
"status": "affected",
"version": "4",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service."
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/CR:X/IR:X/AR:X",
"version": "3.0"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-02-07T00:53:30.523Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://veeam.com/kb4541"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2024-22022",
"datePublished": "2024-02-07T00:53:30.523Z",
"dateReserved": "2024-01-04T01:04:06.574Z",
"dateUpdated": "2025-06-03T18:40:07.375Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}