Description:
Veeam has published security advisory to address multiple vulnerabilities in Veeam Backup and Replication products. For detailed information about the vulnerabilities, please refer to the corresponding security advisory at vendor's website.
Affected Systems:
- Veeam Backup and Replication versions prior to 12.3.2.3617 and all earlier version 12 builds
For detailed information of the affected systems, please refer to the corresponding security advisory at vendor's website.
Impact:
Successful exploitation of the vulnerabilities could lead to remote code execution or tampering on an affected system.
Recommendation:
Patches for affected systems are available. System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.
More Information:
- https://www.veeam.com/kb4743
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23120
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24286 (to CVE-2025-24287)
