Intercepting Sensitive Credentials During Restore Operations
CVE-2024-40714
8.3HIGH
What is CVE-2024-40714?
An improper certificate validation vulnerability has been identified in Veeam Backup & Replication, where inadequate checks during TLS certificate validation can be exploited by an attacker on the same network. This flaw potentially allows unauthorized interception of sensitive credentials during restore operations, posing a serious security threat to data integrity and confidentiality in enterprise environments.
Affected Version(s)
Backup and Recovery 12.1.2