Hi,
An OpenSSH vulnerability (CVE-2024-6387) was recently reported.
Do you think this affects the operation of Veeam Backup & Replication?
My understanding is that it does not affect it, but if you have any information, please let me know.
Kind Regards,
Yuuki Ooyama
Climb inc
-
- Influencer
- Posts: 14
- Liked: never
- Joined: Aug 20, 2018 7:30 am
- Contact:
-
- Product Manager
- Posts: 10637
- Liked: 2866 times
- Joined: May 13, 2017 4:51 pm
- Full Name: Fabian K.
- Location: Switzerland
- Contact:
Re: Vulnerability in OpenSSH (CVE-2024-6387)
Hi Yuuki
For our helper appliances (Archiver, HealthCheck, Restore, ...), the vulnerability will get fixed in v12.2. Those appliances only exist temporary when they are needed.
For non-temporary products where we use a Linux appliance (VB4 AWS/Azure/GCP, Nutanix proxy, ...), you can use the built in update function to install OS updates.
This will ensure that you have the latest patch for protection against CVE-2024-6387.
Example for Nutanix AHV proxy:
https://helpcenter.veeam.com/docs/vbahv ... tml?ver=50

Best,
Fabian
For our helper appliances (Archiver, HealthCheck, Restore, ...), the vulnerability will get fixed in v12.2. Those appliances only exist temporary when they are needed.
For non-temporary products where we use a Linux appliance (VB4 AWS/Azure/GCP, Nutanix proxy, ...), you can use the built in update function to install OS updates.
This will ensure that you have the latest patch for protection against CVE-2024-6387.
Example for Nutanix AHV proxy:
https://helpcenter.veeam.com/docs/vbahv ... tml?ver=50

Best,
Fabian
Product Management Analyst @ Veeam Software
Who is online
Users browsing this forum: Google [Bot] and 16 guests