PT-2026-1817 · Veeam · Veeam Backup & Replication
Publicado
2026-01-07
·
Atualizado
2026-01-09
·
CVE-2025-55125
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Veeam Backup & Replication versions prior to 13.0.1.1071
Description
The software contains a flaw that permits a Backup or Tape Operator to execute code remotely as root by crafting a malicious backup configuration file.
Recommendations
Update to version 13.0.1.1071 or later.
Correção
RCE
Command Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Veeam Backup & Replication