Hi,
An OpenSSH vulnerability (CVE-2024-6387) was recently reported.
Do you think this affects the operation of Veeam Backup & Replication?
My understanding is that it does not affect it, but if you have any information, please let me know.
Kind Regards,
Yuuki Ooyama
Climb inc
			
			
									
						
										
						- 
				yu_ooyama
- Influencer
- Posts: 15
- Liked: never
- Joined: Aug 20, 2018 7:30 am
- Contact:
- 
				Mildur
- Product Manager
- Posts: 10984
- Liked: 3016 times
- Joined: May 13, 2017 4:51 pm
- Full Name: Fabian K.
- Location: Switzerland
- Contact:
Re: Vulnerability in OpenSSH (CVE-2024-6387)
Hi Yuuki
For our helper appliances (Archiver, HealthCheck, Restore, ...), the vulnerability will get fixed in v12.2. Those appliances only exist temporary when they are needed.
For non-temporary products where we use a Linux appliance (VB4 AWS/Azure/GCP, Nutanix proxy, ...), you can use the built in update function to install OS updates.
This will ensure that you have the latest patch for protection against CVE-2024-6387.
Example for Nutanix AHV proxy:
https://helpcenter.veeam.com/docs/vbahv ... tml?ver=50

Best,
Fabian
			
			
									
						
							For our helper appliances (Archiver, HealthCheck, Restore, ...), the vulnerability will get fixed in v12.2. Those appliances only exist temporary when they are needed.
For non-temporary products where we use a Linux appliance (VB4 AWS/Azure/GCP, Nutanix proxy, ...), you can use the built in update function to install OS updates.
This will ensure that you have the latest patch for protection against CVE-2024-6387.
Example for Nutanix AHV proxy:
https://helpcenter.veeam.com/docs/vbahv ... tml?ver=50

Best,
Fabian
Product Management Analyst @ Veeam Software
			
						Who is online
Users browsing this forum: Amazon [Bot], Semrush [Bot] and 12 guests