Critical vulnerabilities in Veeam Backup & Replication could allow authenticated users to execute code on backup servers, prompting calls for urgent patching.

CSO Online offers insights into cybersecurity, risk management, and IT leadership, providing articles, reports, and expert analysis to help security professionals navigate the evolving threat landscape and protect their organizations from cyber attacks. By exploring CSO Online's curated content, CISOs, security managers, and IT executives can learn about threat intelligence, security frameworks, and incident response strategies for building resilient cybersecurity programs. Whether you're defending against ransomware, phishing attacks, or insider threats, CSO Online offers resources to strengthen your security posture and safeguard your digital assets.

CSO Online

Veeam has released security patches for Backup & Replication addressing five vulnerabilities, including three critical RCE flaws (CVE-2026-21666, CVE-2026-21667, CVE-2026-21708) each scoring 9.9 CVSS. These allow authenticated domain users to execute code on backup servers. Two additional high-severity flaws enable arbitrary file manipulation and local privilege escalation. The fix is available in build 12.3.2.4465. Veeam urges immediate patching, noting that past vulnerabilities in the platform have been actively exploited by ransomware groups to destroy recovery data.

Veeam warns admins to patch now as critical RCE flaws hit Backup & Replication