CVE-2024-38650

Name of the Vulnerable Software and Affected Versions Veeam Service Provider Console (VSPC) (affected versions not specified)

Description An authentication bypass issue can allow a low-privileged attacker to access the NTLM hash of a service account on the VSPC server. This is related to insufficient protection of service data. Exploitation of this issue may enable a remote attacker to bypass authentication procedures and gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.