A vulnerability in Veeam ONE allows an unprivileged user who has access to the Veeam ONE Web Client the ability to acquire the NTLM hash of the account used by the Veeam ONE Reporting Service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
veeam one 12.0.1.2591 |
||
veeam one 12.0.0.2498 |
Veeam warns of critical Backup Enterprise Manager auth bypass bug By Sergiu Gatlan May 21, 2024 06:24 PM 0 Veeam warned customers today to patch a critical security vulnerability that allows unauthenticated attackers to sign into any account via the Veeam Backup Enterprise Manager (VBEM). VBEM is a web-based platform that enables administrators to manage Veeam Backup & Replication installations via a single web console. It helps control backup jobs and perform restoration operations ...