CVE-2024-39718

Summary

An improper input validation vulnerability that allows a low-privileged user to remotely remove files on the system with permissions equivalent to those of the service account.

Affected Software

VendorProductVersion RangeStatus
VeeamBackup and Recovery12.1.2 <= 12.1.2affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References