Veritas Enterprise Vault Remote Code Execution Vulnerability (CVE-2024-53911) – Critical

2024-11-30

Vulnerability :

This article describes a critical vulnerability (CVE-2024-53911) in Veritas Enterprise Vault servers before version 15.2. An attacker can exploit this vulnerability to execute arbitrary code on the server by sending malicious data to a specific TCP port.

Vulnerability Details:

Platform: Veritas Enterprise Vault
Version: Before 15.2
Vulnerability: Remote Code Execution
Severity: Critical (CVSS score: 9.8)
Date: November 24, 2024 (published)

What Undercode Says:

This is a critical vulnerability that allows attackers to take complete control of affected Veritas Enterprise Vault servers. It’s crucial to update your Veritas Enterprise Vault server to version 15.2 or later as soon as possible to mitigate this risk.

Additional Notes:

The vulnerability is caused by deserialization of untrusted data received on a .NET Remoting TCP port.
No further information on exploit details or mitigation strategies is currently available from this source.

It is recommended to consult with Veritas for official security updates and patching guidance.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top