VDB
CVE-2024-40711
CVE-2024-40711
PUBLISHED
KEV
Es besteht eine Schwachstelle in Veeam Backup & Replication. Diese Sicherheitslücke wird derzeit nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen.
EPSS 70.46% · 98.7th percentile
Risk Scores
EPSS Score
70.46%
98.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Veeam | Veeam Backup & Replication <12.2.0.334 |
Timeline
- Sep 4, 2024 CVE Published
- Sep 8, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 17, 2024 CISA KEV Added
- Oct 17, 2024 CVE Updated
- Oct 18, 2024 Coalition ESS Score
- Oct 18, 2024 Coalition ESS Score
- Oct 19, 2024 EPSS Score
- Feb 21, 2025 Coalition ESS Score
- Mar 20, 2025 EPSS Score
- Mar 20, 2025 Coalition ESS Score
- Mar 22, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2058.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2058 advisory
- https://www.veeam.com/kb4649 advisory
- https://www.cisa.gov/news-events/alerts/2024/10/17/cisa-adds-one-known-exploited-vulnerability-catalog exploit