13 matches found
CVE-2025-40901
A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delete the affected...
CVE-2025-40901
CVE-2025-40901 describes a stored HTML injection in the Credentials Manager ( Guardian/CMC ) prior to 26.1.0. The root cause is improper validation of an input parameter, allowing an administrator to define an identity containing HTML tags. When a victim deletes that identity, the injected HTML c...
CVE-2025-40901 HTML injection in Credentials Manager in Guardian/CMC before 26.1.0
A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delete the affected...
EUVD-2025-209894
A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delete the affected...
CVE-2025-40901 HTML injection in Credentials Manager in Guardian/CMC before 26.1.0
A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delete the affected...
CVE-2025-40901
A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delete the affected...
HTML injection in Credentials Manager in Guardian/CMC before 26.1.0
Summary A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. Impact An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delet...
PT-2026-41888
A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious identity containing HTML tags. When a victim attempts to delete the affected...
Troubleshooting Guest Processing Issues | "Test Now" or "Verify network connectivity and credentials"
Article Applicability This article's primary focus is on traditional credentials-based authentication. For environments using a Group Managed Service Account gMSA, please review the User Guide first to ensure you are familiar with all the Requirements and Limitations of gMSA usage. Challenge Skip...
How to Clean up the Credentials Manager in Veeam Backup & Replication
Challenge Over time, duplicate or outdated credentials may be saved in the Credentials Manager of Veeam Backup & Replication. This article documents a process for reviewing and cleaning up the Credentials Manager. Solution No changes to the Credentials Manager account list are saved untilOK is...
CVE-2019-0838
An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0839...
Unable to Delete Credentials
Challenge When attempting to delete credentials from the credentials manager, a message box states: Unable to delete credentials because they are currently in use. See details for more info. Cause You cannot delete a record that is already used for any component in the backup infrastructure...
Locations to Check for Incorrect Username/Password Issues
Challenge Jobs fail with an error message indicating an incorrect user name or password. An account associated with Veeam is being locked out in Active Directory. Solution Below are the locations where accounts are configured within Veeam Backup & Replication and Backup Enterprise Manager...