Veeam Backup & Replication

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution (RCE) in high availability (HA) deployments of Veeam Backup & Replication.

Published: 2026-03-12T15:09:39.209Z
Updated: 2026-05-10T13:48:38.313Z

A vulnerability allowing a low-privileged user to extract saved SSH credentials.

Published: 2026-03-12T15:09:39.200Z
Updated: 2026-05-10T12:53:07.750Z

A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the Backup Server.

Published: 2026-03-12T15:09:39.284Z
Updated: 2026-05-10T13:34:10.673Z

A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrary files on a Backup Repository.

Published: 2026-03-12T15:09:39.335Z
Updated: 2026-05-10T13:33:44.706Z

A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the Backup Server.

Published: 2026-03-12T15:09:39.148Z
Updated: 2026-03-13T03:55:44.508Z

A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the Backup Server.

Published: 2026-03-12T15:09:39.180Z
Updated: 2026-03-13T03:55:43.772Z

This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres user by sending a malicious interval or order parameter.

Published: 2026-01-08T16:18:20.275Z
Updated: 2026-02-26T15:04:54.450Z

This vulnerability allows a Backup or Tape Operator to write files as root.

Published: 2026-01-08T16:18:20.314Z
Updated: 2026-02-26T15:04:54.295Z

This vulnerability allows a Backup Administrator to perform remote code execution (RCE) as the postgres user by sending a malicious password parameter.

Published: 2026-01-08T16:18:20.416Z
Updated: 2026-02-26T15:04:54.137Z

This vulnerability allows a Backup or Tape Operator to perform remote code execution (RCE) as root by creating a malicious backup configuration file.

Published: 2026-01-08T16:18:20.398Z
Updated: 2026-01-08T17:33:26.470Z

A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user.

Published: 2025-10-30T23:31:34.218Z
Updated: 2026-02-26T16:56:46.096Z

A vulnerability in the Mount service of Veeam Backup & Replication, which allows for remote code execution (RCE) on the Backup infrastructure hosts by an authenticated domain user.

Published: 2025-10-30T23:33:01.993Z
Updated: 2026-02-26T16:56:45.241Z

A vulnerability allowing an authenticated user with the Backup Operator role to modify backup jobs, which could execute arbitrary code.

Published: 2025-06-18T23:30:51.882Z
Updated: 2025-06-23T16:05:15.947Z

A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user

Published: 2025-06-18T23:30:48.375Z
Updated: 2025-06-23T16:05:49.555Z

A vulnerability allowing remote code execution (RCE) for domain users.

Published: 2025-03-20T15:11:39.456Z
Updated: 2025-03-20T16:13:01.660Z

A vulnerability exists where a low-privileged user can exploit insufficient permissions in credential handling to leak NTLM hashes of saved credentials. The exploitation involves using retrieved credentials to expose sensitive NTLM hashes, impacting systems beyond the initial target and potentially leading to broader security vulnerabilities.

Published: 2024-12-04T01:06:05.328Z
Updated: 2024-12-06T20:10:23.572Z

A vulnerability in Veeam Backup & Replication allows users with certain operator roles to expose saved credentials by leveraging a combination of methods in a remote management interface. This can be achieved using a session object that allows for credential enumeration and exploitation, leading to the leak of plaintext credentials to a malicious host. The attack is facilitated by improper usage of a method that allows operators to add a new host with an attacker-controlled IP, enabling them to retrieve sensitive credentials in plaintext.

Published: 2024-12-04T01:06:04.658Z
Updated: 2024-12-04T16:00:32.213Z

A vulnerability in Veeam Backup & Replication platform allows a low-privileged user with a specific role to exploit a method that updates critical configuration settings, such as modifying the trusted client certificate used for authentication on a specific port. This can result in unauthorized access, enabling the user to call privileged methods and initiate critical services. The issue arises due to insufficient permission requirements on the method, allowing users with low privileges to perform actions that should require higher-level permissions.

Published: 2024-12-04T01:06:04.627Z
Updated: 2024-12-04T16:48:57.686Z

A vulnerability in Veeam Backup & Replication allows a low-privileged user to connect to remoting services and exploit insecure deserialization by sending a serialized temporary file collection. This exploit allows the attacker to delete any file on the system with service account privileges. The vulnerability is caused by an insufficient blacklist during the deserialization process.

Published: 2024-12-04T01:06:04.626Z
Updated: 2024-12-05T10:59:46.913Z

A vulnerability Veeam Backup & Replication allows low-privileged users to control and modify configurations on connected virtual infrastructure hosts. This includes the ability to power off virtual machines, delete files in storage, and make configuration changes, potentially leading to Denial of Service (DoS) and data integrity issues. The vulnerability is caused by improper permission checks in methods accessed via management services.

Published: 2024-12-04T01:06:04.668Z
Updated: 2024-12-04T14:54:37.763Z

A vulnerability in Veeam Backup & Replication allows a low-privileged user to start an agent remotely in server mode and obtain credentials, effectively escalating privileges to system-level access. This allows the attacker to upload files to the server with elevated privileges. The vulnerability exists because remote calls bypass permission checks, leading to full system compromise.

Published: 2024-12-04T01:06:04.654Z
Updated: 2024-12-04T16:03:26.578Z

A vulnerability in Veeam Backup & Replication allows low-privileged users to leak all saved credentials in plaintext. This is achieved by calling a series of methods over an external protocol, ultimately retrieving the credentials using a malicious setup on the attacker's side. This exposes sensitive data, which could be used for further attacks, including unauthorized access to systems managed by the platform.

Published: 2024-12-04T01:06:04.677Z
Updated: 2024-12-04T14:53:46.665Z

A vulnerability in Veeam Backup & Replication allows a low-privileged user with certain roles to perform remote code execution (RCE) by updating existing jobs. These jobs can be configured to run pre- and post-scripts, which can be located on a network share and are executed with elevated privileges by default. The user can update a job and schedule it to run almost immediately, allowing arbitrary code execution on the server.

Published: 2024-12-04T01:06:04.636Z
Updated: 2025-03-13T17:40:27.483Z

A vulnerability in Veeam Backup & Replication Enterprise Manager has been identified, which allows attackers to perform authentication bypass. Attackers must be able to perform Man-in-the-Middle (MITM) attack to exploit this vulnerability.

Published: 2024-11-07T16:40:37.566Z
Updated: 2025-03-25T16:53:22.623Z

An improper certificate validation vulnerability in TLS certificate validation allows an attacker on the same network to intercept sensitive credentials during restore operations.

Published: 2024-09-07T16:11:22.237Z
Updated: 2024-09-09T14:03:17.836Z

A vulnerability that allows a user who has been assigned a low-privileged role within Veeam Backup & Replication to alter Multi-Factor Authentication (MFA) settings and bypass MFA.

Published: 2024-09-07T16:11:22.216Z
Updated: 2024-09-09T14:22:01.961Z

A path traversal vulnerability allows an attacker with a low-privileged account and local access to the system to perform local privilege escalation (LPE).

Published: 2024-09-07T16:11:22.203Z
Updated: 2024-09-09T15:18:23.506Z

A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE).

Published: 2024-09-07T16:11:22.213Z
Updated: 2025-10-21T22:55:45.810Z

A series of related high-severity vulnerabilities, the most notable enabling remote code execution (RCE) as the service account and extraction of sensitive information (savedcredentials and passwords). Exploiting these vulnerabilities requires a user who has been assigned a low-privileged role within Veeam Backup & Replication.

Published: 2024-09-07T16:11:22.182Z
Updated: 2024-09-09T16:28:11.865Z

An improper input validation vulnerability that allows a low-privileged user to remotely remove files on the system with permissions equivalent to those of the service account.

Published: 2024-09-07T16:11:22.180Z
Updated: 2024-11-01T19:18:00.417Z

Veeam Backup Enterprise Manager allows high-privileged users to read backup session logs.

Published: 2024-05-22T22:55:11.272Z
Updated: 2024-09-19T01:58:15.369Z

Veeam Backup Enterprise Manager allows high-privileged users to steal NTLM hash of Enterprise manager service account.

Published: 2024-05-22T22:55:11.273Z
Updated: 2024-09-19T01:50:16.524Z

Veeam Backup Enterprise Manager allows account takeover via NTLM relay.

Published: 2024-05-22T22:55:11.260Z
Updated: 2024-09-19T01:50:51.392Z

Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface.

Published: 2024-05-22T22:55:11.237Z
Updated: 2024-09-19T01:38:17.699Z

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

Published: 2023-03-10T00:00:00.000Z
Updated: 2025-10-21T23:15:24.077Z

Improper authentication in Veeam Backup & Replication 9.5U3, 9.5U4,10.x and 11.x component used for Microsoft System Center Virtual Machine Manager (SCVMM) allows attackers execute arbitrary code via Veeam.Backup.PSManager.exe

Published: 2022-03-17T20:48:29.000Z
Updated: 2024-08-03T05:03:32.953Z

Veeam Backup & Replication 10.x and 11.x has Incorrect Access Control (issue 1 of 2).

Published: 2022-03-17T20:28:41.000Z
Updated: 2025-10-21T23:15:44.210Z

Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows attackers to upload and execute arbitrary code.

Published: 2022-03-17T20:56:44.000Z
Updated: 2025-10-21T23:15:44.043Z

Veeam Backup and Replication 10 before 10.0.1.4854 P20210609 and 11 before 11.0.0.837 P20210507 mishandles deserialization during Microsoft .NET remoting.

Published: 2021-06-30T14:28:51.000Z
Updated: 2024-08-04T00:47:43.050Z

VeeamFSR.sys in Veeam Availability Suite before 10 and Veeam Backup & Replication before 10 has no device object DACL, which allows unprivileged users to achieve total control over filesystem I/O requests.

Published: 2020-07-03T10:58:45.000Z
Updated: 2024-08-04T13:15:20.723Z

VeeamVixProxy in Veeam Backup & Replication (B&R) before 8.0 update 3 stores local administrator credentials in log files with world-readable permissions, which allows local users to obtain sensitive information by reading the files.

Published: 2015-10-16T20:00:00.000Z
Updated: 2024-08-06T06:59:04.309Z