Vulnerability identifier: #VU96928

Vulnerability risk: Medium

CVSSv3.1: 6.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-42024

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ONE
Server applications / Remote management servers, RDP, SSH

Vendor: Veeam

Description

The vulnerability allows a remote user to compromise the affected system.

The vulnerability exists due to the application allows remote code execution with service account credentials. A remote attacker with possession of service account credentials can execute arbitrary code on systems with where the Veeam ONE Agent is installed.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

ONE: 10.0.0.750 - 12.1.0.3208

---

External links
http://www.veeam.com/kb4649

---

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.