Approved changes feed: RSS · Atom
cpe:2.3:a:veeam:agent:*:*:*:*:*:windows:*:*
part: a version: * update: *
| Vendor | Veeam (203dc226-d9ed-503f-8231-d4e4e702036f) |
|---|---|
| Product | Agent (3a18aff0-1a42-5065-9a27-c77961e296af) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | windows |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-45207 |
vulnerable | 2026-06-03 14:56:49.115515 |
Details available
HIGH (7)
DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently, allowing the attacker to execute harmful code. This could lead to unauthorized access, data theft, or disruption of services
Published: 2024-12-04T01:06:04.660Z
Updated: 2024-12-04T15:21:30.380Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-42452 |
vulnerable | 2026-06-03 14:56:36.875530 |
Details available
HIGH (8.8)
A vulnerability in Veeam Backup & Replication allows a low-privileged user to start an agent remotely in server mode and obtain credentials, effectively escalating privileges to system-level access. This allows the attacker to upload files to the server with elevated privileges. The vulnerability exists because remote calls bypass permission checks, leading to full system compromise.
Published: 2024-12-04T01:06:04.654Z
Updated: 2024-12-04T16:03:26.578Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-29853 |
vulnerable | 2026-06-03 14:55:27.553023 |
Details available
HIGH (7.8)
An authentication bypass vulnerability in Veeam Agent for Microsoft Windows allows for local privilege escalation.
Published: 2024-05-22T22:55:11.273Z
Updated: 2024-12-04T15:20:00.977Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.