Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2023-27532

Published: 10/03/2023 Updated: 16/03/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Backup \& Replication

Vulnerability Summary

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

veeam backup \\& replication 11.0.1.1261

veeam backup \\& replication 12.0.0.1420

Github Repositories

https://github.com/sfewer-r7/CVE-2023-27532

Exploit for CVE-2023-27532 against Veeam Backup & Replication

CVE-2023-27532 Proof of Concept code to exploit CVE-2023-27532 and either leak plaintext credentials or perform remote command execution Overview For a detailed analysis of the vulnerability and exploitation please read the Rapid7 AttackerKB Analysis Building Open in Visual Studio You will need to either add or update the references to VeeamBackupCommondll, VeeamBackupI

https://github.com/horizon3ai/CVE-2023-27532

POC for Veeam Backup and Replication CVE-2023-27532

CVE-2023-27532 POC for CVE-2023-27532 affecting Veeam Backup and Replication Technical Analysis A technical root cause analysis of the vulnerability can be found on our blog: wwwhorizon3ai/veeam-backup-and-replication-cve-2023-27532-deep-dive Summary This POC abuses an unsecured API endpoint to extract credentials Usage /home/dev/RiderProjects/Veeam_CVE-2023-27532/CV

https://github.com/JxB1990/test2

CVE-2023-27532 Proof of Concept code to exploit CVE-2023-27532 and either leak plaintext credentials or perform remote command execution Overview For a detailed analysis of the vulnerability and exploitation please read the Rapid7 AttackerKB Analysis Building Open in Visual Studio You will need to either add or update the references to VeeamBackupCommondll, VeeamBackupI

Recent Articles

IT threat evolution in Q3 2023. Non-mobile statistics
Securelist • AMR • 01 Dec 2023

These statistics are based on detection verdicts of Kaspersky products and services received from users who consented to providing statistical data. Quarterly figures According to Kaspersky Security Network, in Q3 2023: Kaspersky solutions blocked 694,400,301 attacks from online resources across the globe. A total of 169,194,807 unique links were recognized as malicious by Web Anti-Virus components. Attempts to run malware for stealing money from online bank accounts were stopped on the com...

Read more...

References

CWE-306https://www.veeam.com/kb4424https://nvd.nist.govhttps://github.com/sfewer-r7/CVE-2023-27532https://securelist.com/it-threat-evolution-q3-2023-non-mobile-statistics/111228/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987buffer overflowCVE-2024-28890CVE-2024-27574CVE-2024-27347CVE-2024-31450privilegeSSTICVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook