[Security Vulnerability Alert] Two major security vulnerabilities exist in Veeam Backup and Replication backup software

[Security Vulnerability Alert] Two major security vulnerabilities exist in Veeam Backup and Replication backup software

2025/10/20 ～ 2026/4/20

View Count：27

Forwarded by Taiwan Computer Network Crisis Response and Coordination Center (TWCERTCC-200-202510-00000005)

[Description]
Veeam Backup and Replication are core backup software products from Veeam. Veeam recently released a critical security vulnerability advisory.

[CVE-2025-48983, CVSS: 9.9] This vulnerability exists in the Mount service of Veeam Backup and Replication, allowing domain-authenticated users to execute remote code on the backup infrastructure host.

[CVE-2025-48984, CVSS: 9.9] This vulnerability allows domain-authenticated users to execute remote code on the backup server.

[Affected Platforms]
Veeam Backup and Replication versions earlier than 12.3.2.3617

[Recommended Action]
Update to Veeam Backup and Replication versions later than 12.3.2.4165

[References]
https://www.twcert.org.tw/tw/cp-169-10443-f096d-1.html

[Security Vulnerability Alert] Two major security vulnerabilities exist in Veeam Backup and Replication backup software

2025/10/20 ～ 2026/4/20

View Count：27

Files

參考資料

【Back】

[Security Vulnerability Alert] Two major security vulnerabilities exist in Veeam Backup and Replication backup software

2025/10/20 ～ 2026/4/20

View Count：27

Files

system_update_alt參考資料

【Back】

參考資料