CVE-2024-42455

CVSS 7.1 HIGHEPSS 14.0%CWE-306

In short

A flaw in Veeam Backup & Replication lets a low-privilege user send specially crafted data that tricks the service into deleting files it shouldn't. This happens because the service doesn't properly check what it's deserializing before executing it.

Technical detail

The vulnerability exists in the remoting services deserialization mechanism, where an insufficient blacklist allows a low-privileged attacker to send malicious serialized objects (temporary file collections) that execute with service account privileges. This enables arbitrary file deletion on the system. The attack requires network access to the remoting service endpoint but no authentication bypass is needed due to the low privilege requirement.

Summary generated and translated by AI from the official description.

A vulnerability in Veeam Backup & Replication allows a low-privileged user to connect to remoting services and exploit insecure deserialization by sending a serialized temporary file collection. This exploit allows the attacker to delete any file on the system with service account privileges. The vulnerability is caused by an insufficient blacklist during the deserialization process.

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Veeam · Backup & Replication

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.veeam.com/kb4693