CVE-2024-45207

NONE EPSS 7.4%
Published Dec 4, 20241y ago · Modified Jun 17, 20261w ago
Find Similar
Published Dec 4, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently, allowing the attacker to execute harmful code. This could lead to unauthorized access, data theft, or disruption of services

Threat Intelligence

EPSS Exploit Probability
7.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-426

Affected Products 1

VendorProductVersionRange
veeamveeam_agent_for_windows*≥6.0.0.959  –  <6.3.0.177

References 1

  • veeam.com https://www.veeam.com/kb4693
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.