发布于3月6日3月6日 Members Veeam Backup and Replication: Authentication Bypass by Capture-replay (CVE-2024-29851) Severity 8 CVSS (AV:N/AC:L/Au:M/C:C/I:C/A:C) Published 05/21/2024 Created 10/26/2024 Added 10/25/2024 Modified 11/07/2024 Description This vulnerability in Veeam Backup Enterprise Manager allows a high-privileged user to steal the NTLM hash of the Veeam Backup Enterprise Manager service account if that service account is anything other than the default Local System account. Solution(s) veeam-backup-and-replication-upgrade-latest References https://attackerkb.com/topics/cve-2024-29851 CVE - 2024-29851 https://veeam.com/kb4581
