CVE-2022-26503

Deserialization of untrusted data in Veeam Agent for Windows 2.0, 2.1, 2.2, 3.0.2, 4.x, and 5.x allows local users to run arbitrary code with local system privileges...

Veeam Agent for Microsoft Windows Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Veeam Agent for Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. User interaction on the part of an...

EUVD-2024-26845

Malicious code in bioql PyPI...

EUVD-2022-31061

Malicious code in bioql PyPI...

Cannot request cryptocontainer. Win32 error:Keyset as registered is invalid

Challenge A Veeam Agent for Microsoft Windows backup job completes with the following warnings: Cannot request cryptocontainer. Win32 error:Keyset as registered is invalid. and SQL VSS Writer is missing: databases will be backed up in crash-consistent state and transaction log processing will be...

Cannot find EFI boot manager entry for EFI System Partition

Challenge Backup During the backup of some Linux-based machines, the following error occurs: Cannot find EFI boot manager entry for EFI System Partition GUID Restore During a Bare Metal Restore BMR from a restore point created by a backup that displayed that error, the following error will occur:...

Veeam Agent for Microsoft Windows 6.x < 6.3.2.1205 Privilege Escalation (CVE-2025-24287)

The version of Veeam Agent for Microsoft Windows installed on the remote Windows host is affected by a privilege escalation vulnerability: - A vulnerability allowing local system users to modify directory contents, allowing for arbitrary code execution on the local system with elevated permission...

Failed to load module [veeamblksnap] on Oracle Linux 9 with UEK R8 kernel

Article Applicability This article is specifically regarding Oracle Linux 9 with UEK R8 kernel 6.12+: root@localhost cat /etc/os-release PRETTYNAME="Oracle Linux Server 9.5" root@localhost uname -r 6.12.0-0.20.20.el9uek.x8664 For all other situations involving the error "Failed to load module...

CVE-2024-29853

An authentication bypass vulnerability in Veeam Agent for Microsoft Windows allows for local privilege escalation...

CVE-2024-45207

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...

CVE-2024-45207

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...

CVE-2024-45207

CVE-2024-45207 affects Veeam Agent for Windows (Microsoft Windows) where DLL injection can occur if PATH contains insecure directories. The agent searches PATH for DLLs and may load a malicious DLL placed in those directories, enabling code execution with potential unauthorized access, data theft...

CVE-2024-45207

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...

CVE-2024-45207

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...

Veeam Agent for Windows 安全漏洞

Veeam Agent for Windows is a data protection and disaster recovery solution for physical and virtual machines from Veeam USA. A security vulnerability exists in Veeam Agent for Windows 6.2 and prior versions 6.X. The vulnerability stems from the presence of a DLL injection vulnerability, which...

How to Disable Boot Prompt in Veeam Agent for Windows Recovery Media

Version Requirement Requires Veeam Agent for Microsoft Windows version 6.3, which is included with Veeam Backup & Replication 12.3. Purpose This article documents how to disable the 'Press any key to boot from CD or DVD... " prompt that appears when booting from the Veeam Agent for Microsoft...

How to Detect and Remove Separated Disks During Veeam Agent for Linux Restore

Purpose This article documents how to detect and clean up the restored disks of a Linux machine that used Logical Volume Manager LVM, was backed up with Veeam Agent for Linux , and restored to a hypervisor VM or cloud computing platform. This issue is documented in the following Veeam Agent for...

Granular sudo Permissions for Management of Veeam Agent for IBM AIX

Purpose This article provides examples of granular 'sudo' configuration for the Linux account that will be used by Veeam Backup & Replication when managing Veeam Agent for IBM AIX deployments with a Protection Group. Solution The following granular sudo permissions were tested with Veeam Agent fo...

Granular sudo Permissions for Management of Veeam Agent for Oracle Solaris

Purpose This article provides examples of granular 'sudo' configuration for the Linux account that will be used by Veeam Backup & Replication when managing Veeam Agent for Oracle Solaris deployments with a Protection Group. Solution The following granular sudo permissions were tested with Veeam...

PT-2024-9676 · Veeam · Veeam Agent For Microsoft Windows

Name of the Vulnerable Software and Affected Versions: Veeam Agent for Microsoft Windows affected versions not specified Description: The issue is related to the use of an insecure path search in Veeam Agent for Microsoft Windows, which can lead to DLL injection. If the system's PATH variable...