Critical RCE Vulnerability in Veeam Service Provider Console — Update Now! ️

Veeam has released security updates to address two major vulnerabilities in its Service Provider Console (VSPC) platform, including a Remote Code Execution (RCE) flaw (CVE-2024–42448) with a 9.9/10 severity score. This vulnerability allows attackers to execute arbitrary code on unpatched servers via the VSPC management agent machine.

🔐 What is VSPC?

The Veeam Service Provider Console (VSPC) is a remote-managed platform for Backup as a Service (BaaS) and Disaster Recovery as a Service (DRaaS). It’s used by service providers to monitor the health and security of Veeam-protected virtual environments, Microsoft 365, and cloud workloads.

🚨 Vulnerabilities and Impact:

CVE-2024–42448: This critical RCE flaw allows remote attackers to execute arbitrary code on vulnerable servers. With a severity score of 9.9/10, it is crucial to apply patches immediately.CVE-2024–42449: This high-severity vulnerability enables attackers to steal NTLM hashes of the VSPC server service account, potentially allowing them to delete files on the server.

⚠️ These vulnerabilities can only be exploited if the management agent is authorized on the targeted server. Veeam urges users of VSPC 8.1.0.21377 and earlier versions to update immediately to prevent exploitation.

🔄 How to Protect Your Environment:

Service providers using supported VSPC versions (7 & 8) should update to the latest cumulative patch.Unsupported versions should be upgraded to the most recent release for ongoing security.

🔧 Why Immediate Action is Critical:

The discovery of similar vulnerabilities in Veeam Backup & Replication (VBR) software, such as CVE-2024–40711, has already led to exploitation in ransomware attacks like Frag, Akira, and Fog. If left unpatched, these vulnerabilities can lead to serious security breaches.

🔒 With over 550,000 customers worldwide, including 74% of Global 2,000 companies and 82% of Fortune 500, Veeam products are a critical part of business operations. Ensure your systems are secure by applying the security patches as soon as possible.

💡 Pentest Services for Enhanced Security Is your organization prepared to defend against vulnerabilities like these? Consider penetration testing (pentest) to assess your environment’s security. A thorough pentest can identify potential weaknesses, provide actionable insights, and help secure your systems. Protect your network and data today! 🛡️

Wire Tor offers expert penetration testing services to safeguard your digital assets and fortify your network against cyber threats.