CVE-2024-42021

Name of the Vulnerable Software and Affected Versions Veeam ONE (affected versions not specified)

Description An improper access control issue allows an attacker with valid access tokens to access saved credentials. The vulnerability is related to deficiencies in access control in the Veeam ONE IT infrastructure monitoring tool, which can be exploited to bypass existing security restrictions and gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.