Service Provider Console
by Veeam
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-32998 | Cri | 0.61 | — | 0.00 | May 28, 2026 | This vulnerability in Veeam Service Provider Console allows for remote code execution. | ||
| CVE-2024-29212 | 0.02 | — | 0.02 | May 13, 2024 | Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine. | |||
| CVE-2024-45206 | 0.00 | — | 0.00 | Dec 4, 2024 | A vulnerability in Veeam Service Provider Console has been identified, which allows to perform arbitrary HTTP requests to arbitrary hosts of the network and get information about internal resources. |
- risk 0.61cvss —epss 0.00
This vulnerability in Veeam Service Provider Console allows for remote code execution.
- CVE-2024-29212May 13, 2024risk 0.02cvss —epss 0.02
Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine.
- CVE-2024-45206Dec 4, 2024risk 0.00cvss —epss 0.00
A vulnerability in Veeam Service Provider Console has been identified, which allows to perform arbitrary HTTP requests to arbitrary hosts of the network and get information about internal resources.