Recovery Orchestrator
Approved changes feed: RSS · Atom
cpe:2.3:a:veeam:recovery_orchestrator:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Veeam (203dc226-d9ed-503f-8231-d4e4e702036f) |
|---|---|
| Product | Recovery Orchestrator (e48cf043-2dd6-53b7-b9c2-65ca33e365e5) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/veeamhub/veeam-orchestrator |
purl2cpe | 2026-06-01 10:16:58.405936 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-29855 |
vulnerable | 2026-06-03 14:55:27.556176 |
Details available
CRITICAL (9)
Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator
Published: 2024-06-11T03:55:54.458Z
Updated: 2025-03-27T21:09:44.177Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22022 |
vulnerable | 2026-06-03 14:54:59.317173 |
Details available
HIGH (8.8)
Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Veeam Orchestrator Server Service.
Published: 2024-02-07T00:53:30.523Z
Updated: 2025-06-03T18:40:07.375Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22021 |
not_vulnerable | 2026-06-03 14:54:59.314425 |
Details available
MEDIUM (6.5)
Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the one they are assigned to.
Published: 2024-02-07T00:53:30.493Z
Updated: 2026-03-02T18:32:29.156Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22021 |
vulnerable | 2026-06-03 14:54:59.309661 |
Details available
MEDIUM (6.5)
Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the one they are assigned to.
Published: 2024-02-07T00:53:30.493Z
Updated: 2026-03-02T18:32:29.156Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.