Hello all -
Veeam just releasd a KB on a recent VSPC vulnerability. You can read more about it, and remediation steps in the below KB:
Veeam Service Provider Console Vulnerability - CVE-2024-29212
+20Shane Williford - Veeam VMCA/VMCE | Veeam Legend | VUG Leader | VCP-DCV | Twitter: @coolsport00
+12
It‘s the same KB and CVE from May 7th. It was just updated today.
Best,
Fabian
Product Management Analyst @ Veeam Software
+20Mildur wrote:
It‘s the same KB and CVE from May 7th. It was just updated today.
Best,
Fabian
Thanks Fabian.
Shane Williford - Veeam VMCA/VMCE | Veeam Legend | VUG Leader | VCP-DCV | Twitter: @coolsport00
1 person likes this
+12The reason for the KB update was a repack of the previous patch:
8.0.0.19552
This is a repack of build 8.0.0.19236 that includes an enhanced update to address the critical vulnerability in VCSP. Although our initial patch effectively addressed the primary concern, a subsequent review identified an area for further improvement. To ensure comprehensive protection, we have swiftly developed and released a refined patch that fully mitigates the issue. We're confident this updated version reinforces the security of VCSP and demonstrates our commitment to continually strengthening our response measures.
Product Management Analyst @ Veeam Software
+21Thanks for this. Will get it looked at and installed.
Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | vExpert 6* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
1 person likes this
Comment
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.