Vulnerability identifier: #VU96928
Vulnerability risk: Medium
CVSSv3.1: 6.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
ONE
Server applications /
Remote management servers, RDP, SSH
Vendor: Veeam
Description
The vulnerability allows a remote user to compromise the affected system.
The vulnerability exists due to the application allows remote code execution with service account credentials. A remote attacker with possession of service account credentials can execute arbitrary code on systems with where the Veeam ONE Agent is installed.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
ONE: 10.0.0.750 - 12.1.0.3208
External links
http://www.veeam.com/kb4649
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.