ghsa-58p4-j3v2-9gh4
Vulnerability from github
Published
2024-09-07 18:30
Modified
2024-09-07 18:30
Severity
Details
A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed.
{ "affected": [], "aliases": [ "CVE-2024-42024" ], "database_specific": { "cwe_ids": [ "CWE-250" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2024-09-07T17:15:14Z", "severity": "CRITICAL" }, "details": "A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed.", "id": "GHSA-58p4-j3v2-9gh4", "modified": "2024-09-07T18:30:24Z", "published": "2024-09-07T18:30:24Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42024" }, { "type": "WEB", "url": "https://www.veeam.com/kb4649" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
Loading...