The report discusses a vulnerability in Veeam Backup & Replication software that could allow a remote attacker to execute arbitrary commands. The issue arises from the software's failure to properly validate user-supplied input. An attacker could exploit this vulnerability by sending a maliciously crafted request to the application, leading to remote code execution with SYSTEM privileges
This could result in the attacker gaining full control over the system. The report recommends updating to version 11.0.1.1261 to mitigate this vulnerability and ensure secure usage of the software. https://www.cert.ssi.gouv.fr/pdf/CERTFR-2024-AVI-0359.pdf