IIV permits low-privileged user to delete files as service acc.
CVE-2024-39718 Published on September 7, 2024
An improper input validation vulnerability that allows a low-privileged user to remotely remove files on the system with permissions equivalent to those of the service account.
Products Associated with CVE-2024-39718
Want to know whenever a new CVE is published for Veeam Backup Replication? stack.watch will email you.
Affected Versions
Veeam Backup and Recovery:- Version 12.1.2, <= 12.1.2 is affected.
Exploit Probability
EPSS
0.46%
Percentile
63.67%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.