CVE-2024-40709

Summary

A missing authorization vulnerability allows a local low-privileged user on the machine to escalate their privileges to root level.

Affected Software

VendorProductVersion RangeStatus
VeeamBackup and Recovery12.1.2 <= 12.1.2affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References