• EN

Vulnerability Scanner Detection Related to CVE-2023-38545

  • 12 December 2023
  • 4 comments
  • 56 views
dips
Userlevel 7
Badge +7
  • dips
  • Veeam Legend
  • 716 comments

In case anyone has not seen this and your Veeam Installation is being flagged for being Vulnerable by Vulnerability Scanning Software, have a look at the following.

https://www.veeam.com/kb4523

Your Veeam Installations are not vulnerable as SOCKS5 is not used and the affected binaries can be manually removed.

Affects:

Veeam Backup & Replication
Veeam Agent for Microsoft Windows
Veeam Agent for Linux
Veeam Cloud Connect



Just to add, it’s great that Veeam is so open about this and provide instructions on how to mitigate it. Wish other vendors would do the same. 

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2023 | www.dipen.co.uk

4 comments

NZ_BenThomas
Userlevel 6
Badge +3

Thanks for sharing this one @dips :)

Ben Thomas | Solutions Advisor | Veeam Vanguard 2023 | VMCE2022 | Microsoft MVP 2018-2023 | BCThomas.com
Chris.Childerhose
Userlevel 7
Badge +20

This is interesting but nice Veeam is transparent.  Thanks for sharing, Dips.

Chris Childerhose - VMCA2022 | VMCE2023 | Veeam Vanguard 7* | Veeam Legend 3* | vExpert 5* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
dloseke
Userlevel 7
Badge +6

Thanks, this came out in Veeam’s Knowledge Base Highlights earlier today as well.  Thanks for sharing in the community for those not signed up.  For anyone not signed up, you can go here and fill in your info at the top.

Derek M. Loseke, Senior Systems Engineer | Veeam Legend 2022-2023 | VMSP/VMTSP | VCP6-DCV | VSP/VTSP | CCNA | https://technotesanddadjokes.com | @dloseke
marco_s
Userlevel 7
Badge +7

Very interesting..thank you @dips !

Marco Sorrentino - Italy | System Engineer | VMCE & Veeam Lover

Comment


Terms & Conditions