Veeam Service Provider Console
5 CVEs affecting Veeam Service Provider Console. Latest disclosed: 2026-05-28. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-42448 | Critical | 9.9 | 2024-12-11 | From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution… |
CVE-2024-29212 | Critical | 9.9 | 2024-05-13 | Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its compone… |
CVE-2024-42449 | High | 7.1 | 2024-12-04 | From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to remove arbitrary files on the… |
CVE-2024-45206 | Medium | 6.5 | 2024-12-04 | A vulnerability in Veeam Service Provider Console has been identified, which allows to perform arbitrary HTTP requests to arbitrary hosts of the network and ge… |
CVE-2026-32998 | | 2026-05-28 | This vulnerability in Veeam Service Provider Console allows for remote code execution. |