Veeam warns of critical RCE bug in Service Provider Console

December 26, 2024
Finance & Insurance, Industry, Law, Public / Government, Tourism, Trade, Transport
0

Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing.

VSPC, described by the company as a remote-managed BaaS (Backend as a Service) and DRaaS (Disaster Recovery as a Service) platform, is used by service providers to monitor the health and security of customer backups, as well as manage their Veeam-protected virtual, Microsoft 365, and public cloud workloads.

The first security flaw fixed today (tracked as CVE-2024-42448 and rated with a 9.9/10 severity score) enables attackers to execute arbitrary code on unpatched servers from the VSPC management agent machine.

LM hash of the VSPC server service account and use the gained access to delete files on the VSPC server.

However, as the company explained in a security advisory published today, these two vulnerabilities can only be exploited successfully if the management agent is authorized on the targeted server.

The flaws impact VPSC 8.1.0.21377 and all earlier versions, including builds 8 and 7, but unsupported product versions are also likely affected and “should be considered vulnerable,” even though they weren’t tested.

“We encourage service providers using supported versions of Veeam Service Provider Console (versions 7 & 8) to update to the latest cumulative patch,” Veeam said.

“Service Providers using unsupported versions are strongly encouraged to upgrade to the latest version of Veeam Service Provider Console.”

Recent wild exploitation targeting Veeam vulnerabilities has shown that it’s crucial to patch vulnerable servers as soon as possible to block potential attacks.

As Sophos X-Ops incident responders revealed last month, an RCE flaw (CVE-2024-40711) in Veeam’s Backup & Replication (VBR) software disclosed in September is now exploited to deploy Frag ransomware.

The same vulnerability is also used to gain remote code execution on vulnerable VBR servers in Akira and Fog ransomware attacks.

Veeam says its products are used by over 550,000 customers worldwide, including 74% of all Global 2,000 companies and 82% of Fortune 500.

Source

Leave a Comment Cancel Reply

London, GB

10:14 pm, Apr 22, 2025

11°C

L: 9° | H: 12°

Feels like 10°C° broken clouds

Humidity: 74 %

Pressure: 1016 mb

Wind: 7 mph SW

Wind Gust: 12 mph

UV Index: 0

Precipitation: 0 mm

Clouds: 68%

Rain Chance: 0%

Visibility: 10 km

Sunrise: 5:49 am

Sunset: 8:07 pm

DailyHourly

Daily ForecastHourly Forecast

Tomorrow 10:00 pm

9° | 12°°C 1 mm 100% 13 mph 93 % 1018 mb 0 mm/h

Thu Apr 24 10:00 pm

7° | 16°°C 0.2 mm 20% 6 mph 85 % 1023 mb 0 mm/h

Fri Apr 25 10:00 pm

8° | 17°°C 0 mm 0% 9 mph 84 % 1024 mb 0 mm/h

Sat Apr 26 10:00 pm

9° | 16°°C 0.99 mm 99% 6 mph 89 % 1024 mb 0 mm/h

Sun Apr 27 10:00 pm

9° | 19°°C 0 mm 0% 8 mph 96 % 1025 mb 0 mm/h

Tomorrow 1:00 am

10° | 11°°C 0 mm 0% 7 mph 75 % 1015 mb 0 mm/h

Tomorrow 4:00 am

8° | 9°°C 1 mm 100% 9 mph 88 % 1012 mb 0 mm/h

Tomorrow 7:00 am

8° | 8°°C 1 mm 100% 13 mph 93 % 1009 mb 0 mm/h

Tomorrow 10:00 am

10° | 10°°C 1 mm 100% 10 mph 93 % 1010 mb 0 mm/h

Tomorrow 1:00 pm

11° | 11°°C 0.8 mm 80% 9 mph 84 % 1012 mb 0 mm/h

Tomorrow 4:00 pm

11° | 11°°C 0.2 mm 20% 11 mph 72 % 1013 mb 0 mm/h

Tomorrow 7:00 pm

11° | 11°°C 0 mm 0% 7 mph 73 % 1015 mb 0 mm/h

Tomorrow 10:00 pm

9° | 9°°C 0 mm 0% 3 mph 89 % 1018 mb 0 mm/h

Name	Price	24H (%)
Bitcoin(BTC)	€79,342.99	4.44%
Ethereum(ETH)	€1,476.86	7.66%
Tether(USDT)	€0.87	0.05%
XRP(XRP)	€1.88	3.67%
Solana(SOL)	€125.75	5.59%
USDC(USDC)	€0.87	0.01%
Dogecoin(DOGE)	€0.150278	9.04%
Shiba Inu(SHIB)	€0.000011	7.58%
Pepe(PEPE)	€0.000007	8.91%

Veeam warns of critical RCE bug in Service Provider Console

Share:

Leave a Comment Cancel Reply

Utility link

Useful link

Newsletter

Follow Us