Unrated severityNVD Advisory· Published May 13, 2024· Updated Aug 2, 2024

CVE-2024-29212

Description

Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine.

Affected products

Veeam/Service Provider Consolev5
Range: 8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.veeam.com/kb4575mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.024
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000