Critical RCE Vulnerability in Veeam Backup & Replication — Patch Released

Colleagues, a security notice: Veeam has released a patch for a critical RCE (CVE-2026-44963).
- Allowed remote code execution on Backup Server by an authenticated domain user; CVSS 9.4.
- Affected: builds 12.3.2.4465 and earlier; 13.x not affected due to architectural changes.
- Fix: available in 12.3.2.4854; issue reported responsibly by a researcher.
Why it matters: the flaw can be leveraged for attacks, including ransomware—urgent updates are required.
Will you check and update your instances?
#cybersecurity #backups #Veeam #infosec


Latest comments
No comments yet.