CVE-2024-40711 - Veeam Backup and Replication Deserialization Vulnerability

CVE-2024-40711: Veeam | Backup & Replication

Date Added:
2024-10-17

Due Date:
2024-11-07

Vulnerability Name: Veeam Backup and Replication Deserialization Vulnerability

Description: Veeam Backup and Replication contains a deserialization vulnerability allowing an unauthenticated user to perform remote code execution.

Known To Be Used in Ransomware Campaigns?: Known

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes: https://www.veeam.com/kb4649 ; https://nvd.nist.gov/vuln/detail/CVE-2024-40711

Related News Articles: Ransomware Gangs Use LockBit's Fame to Intimidate Victims in Latest AttacksOctober 23, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard