Veeam Recovery Orchestrator

3 CVEs affecting Veeam Recovery Orchestrator. Latest disclosed: 2024-06-11. Critical: 1, High: 1.

Top CVEs affecting Veeam Recovery Orchestrator
CVESeverityScorePublishedSummary
CVE-2024-29855Critical9.02024-06-11Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator
CVE-2024-22022High8.82024-02-07Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service acco…
CVE-2024-22021Medium4.32024-02-07Vulnerability CVE-2024-22021 allows a Veeam Recovery Orchestrator user with a low privileged role (Plan Author) to retrieve plans from a Scope other than the o…