authentication bypass (CVE-2024-29849) #shorts #breaking

CVE

CVE-2024-29849 involves a serious security flaw known as an authentication bypass. Discovered 1.5 months ago, this vulnerability affects Veeam Backup & Replication versions less than 12.1.2.172 and 11.0.1.1261 P20240304. While this is not a zero-day vulnerability, it has the potential for significant impact. Attackers can exploit this flaw using proof-of-concept exploit code, enabling them to log in as any user on the Veeam Backup Enterprise Manager web interface. Though specific cases of successful attacks have not been disclosed, all users of Veeam Backup Enterprise Manager should take notice.

Watch the full video on YouTube: CVE-2024-29849

Remediation and exploitation details

This chain involves the following actors

This following systems are involved

Attack entry point

Remediation actions

Exploitation actions

Related Content

NOTE: The following related content has not been vetted and may be unsafe.

CVE database technical details

CVE ID
CVE-2024-29849
Description
Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface.
Provider
hackerone
CWE / problem types
Affected Software Versions
Veeam:Backup & Replication:[{'version': '12.1.2.172', 'status': 'affected', 'lessThan': '12.1.2.172', 'versionType': 'semver'}, {'version': '11.0.1.1261 P20240304', 'status': 'affected', 'lessThan': '11.0.1.1261 P20240304', 'versionType': 'semver'}]
Date Published
2024-05-22T22:55:11.237Z
Last Updated
2024-09-19T01:38:17.699Z