Comprehensive data protection for all workloads
Post Reply
yu_ooyama
Influencer
Posts: 14
Liked: never
Joined: Aug 20, 2018 7:30 am
Contact:

Vulnerability in OpenSSH (CVE-2024-6387)

Post by yu_ooyama »

Hi,

An OpenSSH vulnerability (CVE-2024-6387) was recently reported.
Do you think this affects the operation of Veeam Backup & Replication?

My understanding is that it does not affect it, but if you have any information, please let me know.

Kind Regards,
Yuuki Ooyama
Climb inc
Mildur
Product Manager
Posts: 10637
Liked: 2866 times
Joined: May 13, 2017 4:51 pm
Full Name: Fabian K.
Location: Switzerland
Contact:

Re: Vulnerability in OpenSSH (CVE-2024-6387)

Post by Mildur »

Hi Yuuki

For our helper appliances (Archiver, HealthCheck, Restore, ...), the vulnerability will get fixed in v12.2. Those appliances only exist temporary when they are needed.

For non-temporary products where we use a Linux appliance (VB4 AWS/Azure/GCP, Nutanix proxy, ...), you can use the built in update function to install OS updates.
This will ensure that you have the latest patch for protection against CVE-2024-6387.

Example for Nutanix AHV proxy:
https://helpcenter.veeam.com/docs/vbahv ... tml?ver=50

Image

Best,
Fabian
Product Management Analyst @ Veeam Software
Post Reply

Who is online

Users browsing this forum: Google [Bot] and 16 guests