Veeam Backup And Replication

12 CVEs affecting Veeam Backup And Replication. Latest disclosed: 2026-05-28. Critical: 5, High: 3.

Top CVEs affecting Veeam Backup And Replication
CVESeverityScorePublishedSummary
CVE-2026-21666Critical10.02026-03-12A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the Backup Server.
CVE-2026-21667Critical10.02026-03-12A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the Backup Server.
CVE-2025-48983Critical10.02025-10-30A vulnerability in the Mount service of Veeam Backup & Replication, which allows for remote code execution (RCE) on the Backup infrastructure hosts by an authe…
CVE-2026-21708Critical9.92026-03-12A vulnerability allowing a Backup Viewer to perform remote code execution (RCE) as the postgres user.
CVE-2026-21669Critical9.92026-03-12A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the Backup Server.
CVE-2026-21672High8.82026-03-12A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers.
CVE-2026-21668High8.82026-03-12A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrary files on a Backup Repository.
CVE-2026-21670High7.72026-03-12A vulnerability allowing a low-privileged user to extract saved SSH credentials.
CVE-2026-329972026-05-28A vulnerability allowing an authenticated user with the Backup Administrator role to write arbitrary files on Linux-based Veeam Backup & Replication server.
CVE-2026-329962026-05-28This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation.
CVE-2026-217092026-04-17A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement.
CVE-2025-489842025-10-30A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user.