CVE-2023-38547

Vulnerability updated 22 days ago (2024-11-29T14:01:31.246Z)

Download STIX

Preview STIX

CVE-2023-38547 is a critical software vulnerability discovered in the Veeam ONE IT infrastructure monitoring and analytics platform. This flaw in software design or implementation was one of four vulnerabilities identified and addressed by Veeam, posing a potential risk to the security and functionality of the platform. The other vulnerabilities were tagged as CVE-2023-38548, CVE-2023-38549, and CVE-2023-41723. Veeam promptly responded to the discovery of these vulnerabilities by releasing security updates. Two of the vulnerabilities, including CVE-2023-38547, were classified as critical, indicating their potential for severe impact if exploited. The updates provided by Veeam aimed to rectify these flaws and ensure the continued secure operation of the Veeam ONE platform. In addition to addressing the two critical vulnerabilities, Veeam also released patches for two medium severity vulnerabilities (CVE-2023-38549, CVE-2023-41723). These updates were made available to users via https://thehackernews.com/2023/11/critical-flaws-discovered-in-veeam-one.html. The swift action by Veeam underscores their commitment to maintaining the security and integrity of their IT monitoring platform, thereby minimizing the risk to their customers' IT infrastructure.

Description last updated: 2024-05-04T20:43:53.910Z

What's your take? (Question 1 of 3)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Veeam

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Vulnerabilities

To see the evidence that has resulted in these vulnerability associations, create a free account

Alias Description	Association Type	Votes
The vulnerability CVE-2023-38548 is associated with CVE-2023-38547.	Unspecified	3
The vulnerability CVE-2023-38549 is associated with CVE-2023-38547.	Unspecified	2
The vulnerability CVE-2023-41723 is associated with CVE-2023-38547.	Unspecified	2

Source Document References

Information about the CVE-2023-38547 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Checkpoint	a year ago	13th November – Threat Intelligence Report - Check Point Research
CERT-EU	a year ago	Veeam ONE vulnerabilities addressed
CERT-EU	a year ago	Veeam patches ONE monitoring platform
CERT-EU	a year ago	CVE-2023-38547 - Alert Detail - Security Database
CERT-EU	a year ago	CVE-2023-38547: Critical Flaws in Veeam
CERT-EU	a year ago	Critical Vulnerabilities Expose Veeam ONE Software to Code Execution
Securityaffairs	a year ago	Veeam fixed multiple flaws in Veeam ONE, including critical issues
InfoSecurity-magazine	a year ago	Veeam Patches Two Critical Bugs in Veeam ONE
CERT-EU	a year ago	Critical Vulnerabilities in Veeam ONE
CERT-EU	a year ago	Veeam warns of critical bugs in Veeam ONE monitoring platform