Veeam Backup Enterprise Manager Vulnerable to Account Takeover via NTLM Relay
CVE-2024-29850

8.8HIGH

Key Information:

Vendor: Veeam
Status: Backup & Replication
Vendor: CVE Published:; 22 May 2024

Summary

The vulnerability in Veeam Backup Enterprise Manager exposes systems to potential account takeover through an NTLM relay attack. This allows an attacker to impersonate legitimate users and gain unauthorized access to sensitive backup and recovery resources. Administrators are urged to implement proper security measures, such as disabling NTLM authentication where possible and employing additional layers of security, to mitigate risks related to this vulnerability. For further details, refer to Veeam’s official knowledge base article.

Affected Version(s)

Backup & Replication 12.1.2.172

References

https://veeam.com/kb4581

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 22, 2024