Veeam Backup Enterprise Manager Vulnerable to Account Takeover via NTLM Relay
CVE-2024-29850

8.8HIGH

Key Information:

Vendor: Veeam
Status: Backup & Replication
Vendor: CVE Published:; 22 May 2024

What is CVE-2024-29850?

The vulnerability in Veeam Backup Enterprise Manager exposes systems to potential account takeover through an NTLM relay attack. This allows an attacker to impersonate legitimate users and gain unauthorized access to sensitive backup and recovery resources. Administrators are urged to implement proper security measures, such as disabling NTLM authentication where possible and employing additional layers of security, to mitigate risks related to this vulnerability. For further details, refer to Veeam’s official knowledge base article.

Affected Version(s)

Backup & Replication 12.1.2.172

References

https://veeam.com/kb4581

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 22, 2024

JSON