Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.
References
| Link | Resource |
|---|---|
| https://www.veeam.com/kb4424 | Vendor Advisory |
| https://www.veeam.com/kb4424 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:53
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.veeam.com/kb4424 - Vendor Advisory |
09 May 2024, 18:37
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Veeam veeam Backup \& Replication
|
|
| CPE | cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:p20211123:*:*:*:*:*:* cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:*:*:*:*:*:*:* cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:-:*:*:*:*:*:* cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:p20220302:*:*:*:*:*:* cpe:2.3:a:veeam:backup_\&_replication:12.0.0.1420:-:*:*:*:*:*:* |
cpe:2.3:a:veeam:veeam_backup_\&_replication:11.0.1.1261:p20220302:*:*:*:*:*:* cpe:2.3:a:veeam:veeam_backup_\&_replication:12.0.0.1420:-:*:*:*:*:*:* cpe:2.3:a:veeam:veeam_backup_\&_replication:11.0.1.1261:*:*:*:*:*:*:* cpe:2.3:a:veeam:veeam_backup_\&_replication:11.0.1.1261:p20211123:*:*:*:*:*:* cpe:2.3:a:veeam:veeam_backup_\&_replication:11.0.1.1261:p20211211:*:*:*:*:*:* cpe:2.3:a:veeam:veeam_backup_\&_replication:11.0.1.1261:-:*:*:*:*:*:* |
Information
Published : 2023-03-10 22:15
Updated : 2024-11-21 07:53
NVD link : CVE-2023-27532
Mitre link : CVE-2023-27532
CVE.ORG link : CVE-2023-27532
JSON object : View
Products Affected
veeam
- veeam_backup_\&_replication
CWE
CWE-306
Missing Authentication for Critical Function