cvedb.io
CVE-2024-45207
HIGH · CVSS 7
EPSS exploitation probability: 0%
Published 2024-12-04T02:15:05.520 · Last modified 2026-06-17T07:53:47.853

Summary

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently, allowing the attacker to execute harmful code. This could lead to unauthorized access, data theft, or disruption of services

Affected products

veeam — veeam_agent_for_windows

Does this affect you?

Add your gear to cvedb and we'll alert you only when veeam ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.