Veeam exposes critical security bug in the Backup Enterprise Manager tool

Veeam announced that it recently discovered and fixed a critical vulnerability in its Veeam Backup Enterprise Manager (VBEM).

The vulnerability, tracked as CVE-2024-29849 (via BleepingComputer) is described as an authentication bypass flaw that allows virtually anyone to log into any account on the platform. It has a security score of 9.8 and is considered “critical”.