Mitigation involves the removal of VDDK, which contains the libcurl library, from machines where it is not needed. It is crucial that VDDK not be removed from any machine with a role that requires the capability to communicate with the VMware vSphere environment.
Roles where VDDK must not be removed as it would impact the ability to communicate with the VMware vSphere environment:
- Veeam Backup Server
- VMware Backup Proxy
- Guest Interaction Proxy
- CDP Proxy
Please note that the presence of VDDK on any other Veeam components or on protected machines that do not carry the above roles does not represent even a theoretical threat because VDDK is never used or called from the Veeam code on those machines.