350 matches found
Veeam Backup & Replication - Unauthenticated
A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution RCE. id: CVE-2024-40711 info: name: Veeam Backup & Replication - Unauthenticated author: rootxharsh,iamnoooob,DhiyaneshDK severity: critical description: | A deserializati...
CVE-2026-21671
A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...
EUVD-2026-11595
A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers...
CVE-2026-21672
CVE-2026-21672 is a local privilege escalation vulnerability affecting Windows-based Veeam Backup & Replication servers. Public docs confirm the flaw exists in 12.x builds prior to 12.3.2.4465 and in 13.x prior to 13.0.1.2067, with fixes shipped in those versions. Connected sources also link this...
CVE-2026-21671
A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...
CVE-2026-21671
A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...
CVE-2026-21671
A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...
Vulnerabilities fixed in Veeam Backup & Replication
Veeam has fixed vulnerabilities in Veeam Backup & Replication. The vulnerabilities allow an authenticated domain user to remotely execute code on the backup server, which can lead to unauthorized control of backup operations. This issue is present in the backup server environment and can be...
Vulnerabilities Resolved in Veeam Backup & Replication 13.0.1.2067
All vulnerabilities documented in this article were resolved in Veeam Backup & Replication 13.0.1.2067. Veeam Software Security Commitment Veeam® is committed to ensuring its products protect customers from potential risks. As part of that commitment, we operate a Vulnerability Disclosure Program...
Veeam Operations Fail When the Backup Server Has Limited Internet Access
Article Applicability This article addresses an issue that may occur when using a Windows-based deployment of Veeam Backup & Replication v13, where the Veeam Backup Server or other Windows-based component servers are isolated from the internet or subject to significant firewall restrictions...
Restore to Google Compute Engine Fails with API Errors When Using Helper Appliance
Challenge When restoring a VM to Google Compute Engine GCE, the following errors occur: For Windows platform: Failed to restore to GCE: import-image: datestamp step "import" run error: step "wait-for-bootstrap" did not complete within the specified timeout of 20m0s System.Exception For Linux...
Restore to AWS EC2 Fails with: "ClientError: Unknown OS / Missing OS files."
Challenge When restoring a VM to AWS EC2, the following error occurs: StatusMessage: "CLIENTERROR : ClientError: Unknown OS / Missing OS files." Cause This issue occurs because Amazon recently began encrypting disks upon creation, resulting in new disks containing random data rather than zeros...
Veeam Backup and Replication < 13.0.1.1071 Multiple Vulnerabilities (January 2026) (KB4792)
The version of Veeam Backup and Replication installed on the remote Windows host is prior to 13.0.1.1071. It is, therefore, affected by multiple vulnerabilities: - This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup...
Exploit for CVE-2025-59470
CVE-2025-59470 CVE-2025-59470 PoC exploit targeting Veeam B...
Veeam Backup & Replication 安全漏洞
Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication that stems from malicious content in backup configuration files, which could lead to remote code execution attacks...
Veeam Backup & Replication 安全漏洞
Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication that stems from mishandling of malicious intervals or sequence parameters, which could lead to a remote code execution attack...
PT-2026-1817
Name of the Vulnerable Software and Affected Versions Veeam Backup & Replication versions prior to 13.0.1.1071 Description The software contains a flaw that permits a Backup or Tape Operator to execute code remotely as root by crafting a malicious backup configuration file. Recommendations Update...
PT-2026-1644
Veeam Backup & Replication and Affected Versions Veeam Backup & Replication versions 13.0.1.180 and earlier Description A critical remote code execution RCE vulnerability exists in Veeam Backup & Replication software. This flaw, tracked as CVE-2025-59470, has a CVSS score of 9.0 and allows a user...
Vulnerabilities Resolved in Veeam Backup & Replication 13.0.1.1071
All vulnerabilities documented in this article were resolved in Veeam Backup & Replication 13.0.1.1071. Veeam Product Latest Version Download Page Veeam Software Security Commitment Veeam® is committed to ensuring its products protect customers from potential risks. As part of that commitment, we...
How to Exclude Machines from Proactive Malware Scanning
Article Applicability The exclusion setting discussed in this article was added in Veeam Backup & Replication 13.0.1.180. Purpose This article documents how to exclude specific machines from Proactive Malware Scans the "Perform signature-based scan when malware event appears" option. Exclusions a...