"-Synchronized-Data."

2025-07-29 05:56:59 +00:00 · 2024-05-13 02:00:35 +00:00 · 2024-05-13 02:00:35 +00:00 · 7c47878b8c
commit 7c47878b8c
parent 3af00d2fad
1 changed files with 65 additions and 4 deletions
--- a/2024/29xxx/CVE-2024-29212.json
+++ b/2024/29xxx/CVE-2024-29212.json
@ -1,17 +1,78 @@
 {
+    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
-    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2024-29212",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "support@hackerone.com",
+        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Due to an  unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Veeam",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Service Provider Console",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "8",
+                                            "version_value": "8"
+                                        },
+                                        {
+                                            "version_affected": "<=",
+                                            "version_name": "7",
+                                            "version_value": "7"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://www.veeam.com/kb4575",
+                "refsource": "MISC",
+                "name": "https://www.veeam.com/kb4575"
+            }
+        ]
+    },
+    "impact": {
+        "cvss": [
+            {
+                "version": "3.0",
+                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
+                "baseScore": 9.9,
+                "baseSeverity": "CRITICAL"
            }
        ]
    }