- Veeam Backup & Replication
- Veeam Agent for Linux
- Veeam ONE
- Veeam Service Provider Console
- Veeam Backup for Nutanix AHV
- Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization
Klassifizierung
Product | CVE | CVSS 3.1 Score | Severity |
---|---|---|---|
Veeam Backup & Replication | CVE-2024-40711 | 9.8 | Critical |
CVE-2024-40713 | 8.8 | High | |
CVE-2024-40710 | 8.8 | High | |
CVE-2024-40714 | 8.3 | High | |
CVE-2024-39718 | 8.1 | High | |
CVE-2024-40712 | 7.8 | High | |
Veeam Agent for Linux | CVE-2024-40709 | 7.8 | High |
Veeam ONE | CVE-2024-42024 | 9.1 | Critical |
CVE-2024-42019 | 9.0 | Critical | |
CVE-2024-42023 | 8.8 | High | |
CVE-2024-42021 | 7.5 | High | |
CVE-2024-42022 | 7.5 | High | |
CVE-2024-42020 | 7.3 | High | |
Veeam Service Provider Console | CVE-2024-38650 | 9.9 | Critical |
CVE-2024-39714 | 9.9 | Critical | |
CVE-2024-39715 | 8.5 | High | |
CVE-2024-38651 | 8.5 | High | |
Veeam Backup for Nutanix AHV, Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization | CVE-2024-40718 | 8.8 | High |
Betroffene Versionen
- Veeam Backup & Replication 12.1.2.172 and all earlier version 12 builds.
- Veeam Agent for Linux 6.1.2.1781 and all earlier version 6 builds.
- Veeam ONE 12.1.0.3208 and all earlier version 12 builds.
- Veeam Service Provider Console 8.1.0.21377 and all earlier version 8 builds.
- Veeam Backup for Nutanix AHV Plug-In 12.5.1.8 and all earlier verion 12 builds.
- Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization Plug-In 12.4.1.45 and all earlier version 12 builds.
Workarounds
Keine
Maßnahmen
Aktualisieren der Produkte auf die jew. folgende Version:
- Veeam Backup & Replication 12.2 (build 12.2.0.334)
- Veeam Agent for Linux 6.2 (build 6.2.0.101) — Included with Veeam Backup & Replication 12.2
- Veeam ONE v12.2 (build 12.2.0.4093)
- Veeam Service Provider Console v8.1 (build 8.1.0.21377)
- Veeam Backup for Nutanix AHV Plug-In v12.6.0.632 — Included with Veeam Backup & Replication 12.2
- Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization Plug-In v12.5.0.299 — Included with Veeam Backup & Replication 12.2
Quellen
Veeam Security Bulletin (September 2024): www.veeam.com/kb4649