hard-coded JWT secret allowing authentication bypass (CVE-2024-29855) #shorts #breaking

CVE

This CVE relates to a hard-coded JWT secret vulnerability in Veeam Recovery Orchestrator, which allows attackers to bypass authentication mechanisms. This issue affects versions prior to 7.0.0.379 and 7.1.0.230 and has been known for only two days. Although it is not a zero-day vulnerability, the specific tools used by potential attackers are not currently known, nor are the identities of those who have been attacked. All users of Veeam Recovery Orchestrator should be aware that their systems might be at risk. Through this vulnerability, hackers can gain unauthorized access by evading the authentication processes.

Watch the full video on YouTube: CVE-2024-29855

Remediation and exploitation details

This chain involves the following actors

This following systems are involved

Attack entry point

Remediation actions

Exploitation actions

Related Content

NOTE: The following related content has not been vetted and may be unsafe.

CVE database technical details

CVE ID
CVE-2024-29855
Description
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator
Provider
hackerone
CWE / problem types
Affected Software Versions
Veeam:Recovery Orchestrator:[{'version': '7.1.0.230', 'status': 'affected', 'lessThan': '7.1.0.230', 'versionType': 'semver'}, {'version': '7.0.0.379', 'status': 'affected', 'lessThan': '7.0.0.379', 'versionType': 'semver'}]
Date Published
2024-06-11T03:55:54.458Z
Last Updated
2025-03-27T21:09:44.177Z