Critical Vulnerabilities in Veeam Backup & Replication
06 September 2024 On 04 September 2024, Veeam published several, in parts critical vulnerabilities related to their Veeam Backup & Replication data backup solution. All Veeam Backup & Replication versions <= 12.1.2.172 are affected. The security gaps have been closed with the current version 12.2.0.334 of Veeam Backup & Replication. For further details, please refer […]
Continue reading VIVAVIS – HIGH-LEIT RCE Vulnerability CVE-2024-38456
2024-09-02 In the course of a penetration test, Schutzwerk GmbH have discovered an RCE vulnerability in the HIGH-LEIT SCADA system from VIVAVIS. This vulnerability enables logged-on, non-privileged users of HIGH-LEIT to execute any given code with local system rights. To exploit this vulnerability, the “HL-InstallService” Windows service must be actively running. The following HIGH-LEIT versions […]
Continue reading
