Veeam Backup and Replication Authentication Bypass (KB4288)

high Nessus Plugin ID 173398

Language:

Version 1.6 Sep 4, 2023, 4:15 PM Exploit attributes ("Exploited by malware" set to "True") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C") Plugin Feed: 202309041615
Version 1.5 Aug 24, 2023, 4:26 PM Exploit attributes ("Exploit framework core" set to "True") Plugin Feed: 202308241626
Version 1.4 Aug 22, 2023, 10:11 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") CISA reference Plugin Feed: 202308222211
Version 1.3 May 24, 2023, 8:43 PM Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Plugin Feed: 202305242043
Version 1.2 May 4, 2023, 10:05 PM STIG Severity (set to "I") IAVM reference Plugin Feed: 202305042205
Version 1.1 Mar 27, 2023, 2:05 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") Exploit attributes ("Exploit available" set to "False". "Exploit available" set to "False". "Exploitability ease" set to "No known exploits are available". "Exploitability ease" set to "No known exploits are available". "Exploitability ease" set to "No known exploits are available") Plugin Feed: 202303271405
Version 1.0 Mar 24, 2023, 6:03 PM New Plugin Feed: 202303241803

* Changelogs are generally available for changes made after Nov 1, 2022