Vulnerabilities (CVE)

Filtered by vendor Veeam Subscribe
Filtered by product Recovery Orchestrator
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-22022 1 Veeam 1 Recovery Orchestrator 2024-11-21 N/A 8.8 HIGH
Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service.
CVE-2024-22021 1 Veeam 3 Availability Orchestrator, Disaster Recovery Orchestrator, Recovery Orchestrator 2024-11-21 N/A 4.3 MEDIUM
Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the one they are assigned to.