← Back

Veeam Service Provider Console

veeam_service_provider_console

Vendor: Veeam • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-45206
1Veeam
1Veeam Service Provider Console
Jul 2, 2025
Dec 4, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
A vulnerability in Veeam Service Provider Console has been identified, which allows to perform arbitrary HTTP requests to arbitrary hosts of the network and get information about internal resources.
CVE-2024-29212
1Veeam
1Veeam Service Provider Console
Jun 30, 2025
May 14, 2024
N/A· v4
9.9 CRITICAL· v3
N/A· v2
Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remo...Show more
Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine.Show less