Veeam Addresses Critical Flaws, Urges Admins to Patch

Veeam has released fixes to address multiple security flaws affecting Veeam Backup Enterprise Manager. Among these vulnerabilities, CVE-2024-29849 is rated as critical with a CVSS score of 9.8. A proof of concept (PoC) for this vulnerability is now available. Successful exploitation could allow an unauthenticated attacker to log in to the Veeam Backup Enterprise Manager web interface as any user.