A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.veeam.com/kb4649 |
History
Mon, 09 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Veeam
Veeam backup \& Replication |
|
Weaknesses | CWE-502 | |
CPEs | cpe:2.3:a:veeam:backup_\&_replication:*:*:*:*:*:*:*:* | |
Vendors & Products |
Veeam
Veeam backup \& Replication |
|
Metrics |
ssvc
|
Sat, 07 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE). | |
References |
| |
Metrics |
cvssV3_0
|
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2024-09-07T16:11:22.213Z
Updated: 2024-09-17T03:55:10.887Z
Reserved: 2024-07-09T01:04:07.425Z
Link: CVE-2024-40711
Vulnrichment
Updated: 2024-09-09T15:11:22.876Z
NVD
Status : Awaiting Analysis
Published: 2024-09-07T17:15:13.260
Modified: 2024-09-09T16:35:05.923
Link: CVE-2024-40711
Redhat
No data.