Veeam Backup Enterprise Manager allows high-privileged users to steal NTLM hash of Enterprise manager service account.
References
Link Providers
https://veeam.com/kb4581 cve-icon cve-icon
History

Thu, 19 Sep 2024 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Veeam
Veeam backup Enterprise Manager
Weaknesses CWE-294
CPEs cpe:2.3:a:veeam:backup_enterprise_manager:*:*:*:*:*:*:*:*
Vendors & Products Veeam
Veeam backup Enterprise Manager
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2024-05-22T22:55:11.273Z

Updated: 2024-09-19T01:50:16.524Z

Reserved: 2024-03-21T01:04:07.089Z

Link: CVE-2024-29851

cve-icon Vulnrichment

Updated: 2024-08-02T01:17:58.142Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-22T23:15:09.027

Modified: 2024-11-21T09:08:28.167

Link: CVE-2024-29851

cve-icon Redhat

No data.