A vulnerability in Veeam ONE allows an unauthenticated user to gain information about the SQL server connection Veeam ONE uses to access its configuration database. This may lead to remote code execution on the SQL server hosting the Veeam ONE configuration database.
References
Link | Resource |
---|---|
https://www.veeam.com/kb4508 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2023-11-07T06:17:31.617Z
Updated: 2023-11-07T06:17:31.617Z
Reserved: 2023-07-20T01:00:12.444Z
Link: CVE-2023-38547
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-07T07:15:07.387
Modified: 2023-11-14T19:46:00.150
Link: CVE-2023-38547
JSON object: View
Redhat Information
No data.
CWE