Veeam Backup & Replication - Unauthenticated
ID: CVE-2024-40711
Severity: critical
Author: rootxharsh,iamnoooob,DhiyaneshDK
Tags: cve,cve2024,veeam,backup,unauth,passive
Description
Section titled “Description”A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE).
YAML Source
Section titled “YAML Source”id: CVE-2024-40711
info: name: Veeam Backup & Replication - Unauthenticated author: rootxharsh,iamnoooob,DhiyaneshDK severity: critical description: | A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE). reference: - https://x.com/codewhitesec/status/1831720125747069389?s=46 - https://www.veeam.com/kb4649 - https://nvd.nist.gov/vuln/detail/CVE-2024-40711 classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H cvss-score: 9.8 cve-id: CVE-2024-40711 cwe-id: CWE-502 epss-score: 0.00043 epss-percentile: 0.09666 metadata: verified: true max-request: 1 shodan-query: html:"Veeam Backup" tags: cve,cve2024,veeam,backup,unauth,passive
http: - method: GET path: - "{{BaseURL}}/api/v1/serverinfo" headers: X-Api-Version: 1.1-rev1
matchers-condition: and matchers: - type: word part: body words: - '"databaseVendor":' - '"databaseContentVersion":' condition: and
- type: word part: content_type words: - "application/json"
- type: status status: - 200# digest: 4a0a0047304502200228a747b91bdb464838175329bd3041d0e08d663a446cf56ede7ed9514131b1022100f6af291b296c1b02d5a8e779b869fe8bae05381088b28c65e4818587451faa90:922c64590222798bb761d5b6d8e72950Guide to check the vulnerabilities
Section titled “Guide to check the vulnerabilities”This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.
$ nuclei -u "URL" -t "passive/cves/2024/CVE-2024-40711.yaml"