CVE-2024-42020

Summary

A Cross-site-scripting (XSS) vulnerability exists in the Reporter Widgets that allows HTML injection.

Affected Software

VendorProductVersion RangeStatus
VeeamOne12.1 <= 12.1affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References