Veeam One Firmware vulnerabilities
2 known vulnerabilities affecting veeam/one_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2020-15419P2HIGHCVSS 7.5fixed in 9.5.4.4587≥ 10.0.0.0, < 10.0.0.7502020-07-28
CVE-2020-15419 [HIGH] CWE-611 CVE-2020-15419: This vulnerability allows remote attackers to disclose sensitive information on affected installatio
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Veeam ONE 10.0.0.750_20200415. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Reporter_ImportLicense class. Due to the improper restriction of XML External Entity (XXE) references, a specially cra
nvd
CVE-2020-15418P3HIGHCVSS 7.5fixed in 9.5.4.4587≥ 10.0.0.0, < 10.0.0.7502020-07-28
CVE-2020-15418 [HIGH] CWE-611 CVE-2020-15418: This vulnerability allows remote attackers to disclose sensitive information on affected installatio
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Veeam ONE 10.0.0.750_20200415. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SSRSReport class. Due to the improper restriction of XML External Entity (XXE) references, a specially crafted documen
nvd