Tech & Gadgets

Veeam patches multiple critical remote code execution flaws

Data backup and cloud data management company Veeam said it has released multiple patches that fix more than a dozen bugs affecting various products. In a security advisory published earlier this week, Veeam said it has fixed 18 bugs in total, five of which are considered critical in severity.

The first is an unauthenticated remote code execution vulnerability found in Veeam Backup & Replication. It is tracked as CVE-2024-40711 and has a severity rating of 9.8. The second and third flaws were found in Veeam ONE. CVE-2024-42024, with a severity rating of 9.1, allows threat actors with Agent service account credentials to perform remote code execution.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button