354 matches found
PT-2024-9472 · Veeam · Veeam Backup & Replication
Name of the Vulnerable Software and Affected Versions: Veeam Backup & Replication affected versions not specified Description: The issue is related to insecure deserialization in Veeam Backup & Replication, allowing a low-privileged user to connect to remoting services and exploit this...
"HTTP protocol is not supported, please use HTTPS." Error When Adding Object Storage
Challenge When attempting to add an S3-compatible Object Storage Repository, the wizard displays the error: HTTP protocol is not supported, please use HTTPS. If the service point is then modified to change to HTTPS, the wizard then displays the error: Failed to retrieve certificate from...
"Failed to connect to the database." Updater Configuration Check
Challenge When updating Veeam Backup & Replication the Configuration Check fails with either: Failed to connect to PostgreSQL server localhost:5432. An existing connection was forcibly closed by the remote host SSPI authentication failed for user Cause The account being used to run the update...
Veeam PowerShell Command Fails With: "Unable to connect to the server with MFA-enabled user account."
Challenge When attempting to execute Veeam PowerShell commands, the following error occurs: Unable to connect to the server with MFA-enabled user account. Cause This error occurs when MFA Multi-Factor Authentication is enabled within Veeam Backup & Replication and the account you are logged in as...
Vulnerability Scanner Detection Related to CVE-2023-38545
Veeam Backup & Replication 12.1.2 Release - Article Update With the release of Veeam Backup & Replication 12.1.2, the VDDK libraries, which contained the libcurl library, are no longer included with the Veeam Transport package. After upgrading, the Veeam Transport Package on remote components wil...
How to Configure Advanced Syslog Integration Options
Purpose This article documents advanced configuration options for syslog integration with Veeam Backup & Replication, a new feature starting in version 12.1. Solution The following advanced configuration options are available: Add BOM Before MSG Field Add the Unicode byte order mask BOM before th...
Restore to EC2 Error: "Failed to validate machine: Cannot find a suitable image for the restored machine."
Issue Resolved in Veeam Backup & Replication 12.1 The issue documented in this article was resolved starting in Veeam Backup & Replication 12.1. Veeam strongly encourages all customers to update to the latest version. Challenge A Restore to Amazon EC2 fails with the error: Failed to validate...
Hotfix to Improve Handling of Self-Signed Certificates Used By On-Prem Object Storage with IAM/STS Endpoints, Agent, VM jobs, and Cloud Connect
Article Applicability The hotfix discussed in this article is only necessary when using an on-prem object storage appliance that utilizes self-signed certificates, and you are being affected in the ways described in the Resolved Issues section. If you are not experiencing the errors listed in thi...
Agent Backup Job Fails With "Veeam Backup and Replication version is not compatible with Veeam Agent for Windows"
Challenge After upgrading Veeam Agent for Microsoft Windows , the backup job fails to run and displays the error message: Error: Managed session has failed: Veeam Backup and Replication version is not compatible with Veeam Agent for Windows. Cause This error occurs when the version of Veeam Agent...
SSH Connection Failure to Linux Machine Requiring Multiple Sequential AuthenticationMethods
Challenge Connections to a Linux machine fail with the following errors: Authentication was partially successful, but server requires additional authentication with: 'password'. No suitable authentication method is supported. Supported methods: 'password'. Some tasks may not display these errors...
FC-Only Nimble Array Snapshot Failures in Veeam Backup & Replication P20230718
Challenge When using Veeam Backup & Replication 12 P20230718, rescan, backup, and restore operations may fail when the Nimble array is configured to only use Fibre Channel FC protocol. The request could not be understood by the server. Unexpected argument 'multiinitiator'. Solution A private fix ...
The Console Does Not Appear After Being Launched
Challenge After launching the Veeam Backup & Replication Console, the splash screen appears, and the application is shown in the taskbar, but the Console does not appear, and the mouseover preview is blank. Cause The Console's window position is off the edge of the screen. When the Veeam Backup &...
RomCom RAT Using Deceptive Web of Rogue Software Sites for Covert Attacks
The threat actors behind RomCom RAT are leveraging a network of fake websites advertising rogue versions of popular software at least since July 2022 to infiltrate targets. Cybersecurity firm Trend Micro is tracking the activity cluster under the name Void Rabisu, which is also known as Tropical...
Notorious Cyber Gang FIN7 Returns With Cl0p Ransomware in New Wave of Attacks
The notorious cybercrime group known as FIN7 has been observed deploying Cl0p aka Clop ransomware, marking the threat actor's first ransomware campaign since late 2021. Microsoft, which detected the activity in April 2023, is tracking the financially motivated actor under its new taxonomy Sangria...
Exploit for Missing Authentication for Critical Function in Veeam Veeam_Backup_\&_Replication
PoC exploit for CVE-2023-27532, a vulnerability in Veeam Backup...
After Upgrade to Veeam Backup & Replication 12, Storage Rescan of IBM HyperSwap Volume Fails
Challenge After upgrading to Veeam Backup & Replication 12, Storage Rescan fails with: Failed to update information about IBM HyperSwap volumes. Please ensure that volumes on both sides of IBM HyperSwap relationships are included in the rescan scope in the storage properties. See KB4380 for...
Exploit for Missing Authentication for Critical Function in Veeam Veeam_Backup_\&_Replication
CVE-2023-27532 POC for CVE-2023-27532 affecting Veeam Backup a...
CVE-2023-27532
CVE-2023-27532 affects Veeam Backup & Replication, specifically the Cloud Connect component. The vulnerability allows an unauthenticated actor inside the backup network perimeter to obtain encrypted credentials stored in the configuration database, potentially leading to access to backup infrastr...
CVE-2023-27532
Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts. Recent assessments: sfewer-r7 at March 14, 2023 2:49pm UTC reported: On March 7, 2023, Veeam...
PT-2023-1918
Name of the Vulnerable Software and Affected Versions Veeam Backup & Replication versions 11.0.1.1261 through 12.0.0.1420 Description A flaw exists in the Veeam Backup & Replication software that allows an unauthenticated user with network access to obtain encrypted credentials stored in the...