Summary
Veeam patched a critical RCE vulnerability (CVE-2026-44963, CVSS 9.4) in Backup & Replication that allows authenticated domain users to take control of domain-joined backup servers.
Take Action:
Update your Veeam instances to version 12.3.2.4854 or move to version 13 ASAP. For better security, remove your backup servers from the corporate domain to prevent an ordinary compromised user account from reaching your critical recovery data.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)