Veeam Backup & Replication security updates for 7 critical vulnerabilities
Security Patch Release
Summary
Hide ▲
Show ▼
Veeam released security updates for Backup & Replication to fix 7 critical vulnerabilities that could enable remote code execution, privilege escalation, and arbitrary file manipulation. The flaws affect 12.3.2.4165 and all earlier version 12 builds, putting exposed deployments at risk until they are updated. Veeam also fixed two issues in 13.0.1.2067, while the main patch release ships 12.3.2.4465 for affected version 12 users. The company warned that once the patch is public, attackers may reverse-engineer it and target unpatched systems.
Related Happenings
Microsoft January 2026 Patch Tuesday 114-flaw security update (multiple vulnerabilities)
Security Patch Release
First: 13.01.2026 20:34
Last: 13.01.2026 20:34
Sources 1
About this happening:
**Microsoft** released its **January 2026 Patch Tuesday** update, fixing **114 flaws** and raising urgency because it includes **one actively exploited** issue and **two publicly...
Microsoft January 2026 Patch Tuesday 114-flaw security update (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **Microsoft** released its **January 2026 Patch Tuesday** update, fixing **114 flaws** and raising urgency because it includes **one actively exploited** issue and **two publicly...
Veeam security patch release for CVE-2025-59470
Security Patch Release
First: 07.01.2026 15:06
Last: 07.01.2026 15:06
Sources 1
About this happening:
**Veeam** released **version 13.0.1.1071** to patch **Backup & Replication** vulnerabilities, including **CVE-2025-59470**, a **critical RCE** flaw affecting **13.0.1.180 and earl...
Veeam security patch release for CVE-2025-59470
Security Patch ReleaseAbout this happening: **Veeam** released **version 13.0.1.1071** to patch **Backup & Replication** vulnerabilities, including **CVE-2025-59470**, a **critical RCE** flaw affecting **13.0.1.180 and earl...
Timeline
-
13.03.2026 06:15 2 articles · 2mo ago
Veeam releases Backup & Replication security updates
Initial DisclosureVeeam released security updates for Veeam Backup & Replication to address seven critical vulnerabilities that could enable remote code execution, arbitrary file manipulation, and local privilege escalation across affected 12.3.2.4165 and earlier version 12 builds, with 12.3.2.4465 provided as the fix.
Show sources
- Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution — thehackernews.com — 13.03.2026 06:15
- Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution — thehackernews.com — 13.03.2026 06:15
-
13.03.2026 06:15 1 articles · 2mo ago
Veeam details seven CVEs and fixed versions
Technical Analysis UpdateVeeam documented CVE-2026-21666, CVE-2026-21667, CVE-2026-21668, CVE-2026-21672, CVE-2026-21708, CVE-2026-21669, and CVE-2026-21671, including authenticated-domain-user remote code execution on the Backup Server, Backup Repository file manipulation, local privilege escalation on Windows-based Veeam Backup & Replication servers, Backup Viewer remote code execution as the postgres user, and HA-deployment remote code execution in 13.0.1.2067, while warning that attackers may reverse-engineer the patch to target unpatched deployments.
Show sources
- Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution — thehackernews.com — 13.03.2026 06:15