VDB
CVE-2024-40712
CVE-2024-40712
PUBLISHED
Es besteht eine Schwachstelle in Veeam Backup & Replication aufgrund eines Path Traversal Fehlers. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um erweiterte Rechte zu erlangen.
EPSS 0.26% · 49.9th percentile
Risk Scores
EPSS Score
0.26%
49.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Veeam | Veeam Backup & Replication <12.2.0.334 |
Timeline
- Sep 4, 2024 CVE Published
- Sep 8, 2024 EPSS Score
- Sep 28, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 17, 2024 CVE Updated
- Oct 18, 2024 EPSS Score
- Nov 7, 2024 EPSS Score
- Nov 27, 2024 EPSS Score
- Dec 18, 2024 EPSS Score
- Jan 7, 2025 EPSS Score
- Jan 27, 2025 EPSS Score
- Feb 15, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2058.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2058 advisory
- https://www.veeam.com/kb4649 advisory
- https://www.cisa.gov/news-events/alerts/2024/10/17/cisa-adds-one-known-exploited-vulnerability-catalog exploit