Local Privilege Escalation in Veeam Backup & Replication by Veeam
CVE-2015-5742

Currently unrated

Key Information:

Vendor: Veeam
Status: Backup And Replication
Vendor: CVE Published:; 16 October 2015

What is CVE-2015-5742?

A local privilege escalation vulnerability exists in Veeam Backup & Replication due to the improper handling of local administrator credentials in log files. This flaw allows local users to read world-readable log files, potentially exposing sensitive administrator credentials. As a result, unauthorized individuals may gain access to critical system functions, posing a significant security risk. Users are advised to apply the latest updates and review access permissions on log files to mitigate potential threats.

References

http://packetstormsecurity.com/files/133906/Veeam-Backup-...

x_refsource_MISC

https://www.veeam.com/kb2180

x_refsource_CONFIRM

http://seclists.org/fulldisclosure/2015/Oct/44

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 16, 2015
Vulnerability Reserved
Aug 5, 2015

JSON