Veeam Backup & Replication: Schwachstelle ermöglicht Codeausführung
2025-03-20
On March 19, 2025, VEEAM published a critical vulnerability in their data backup solution VEEAM Backup & Replication.
All VEEAM Backup & Replication versions < 12.3.1 are affected. The security gap was closed with the release of version 12.3.1.
More details can be found under KB4724: CVE-2025-23120. he BSI lists the vulnerabilities under WID-SEC-2025-0596 and rates the overall threat with a CVSS score of 9.9
Since the listed vulnerabilities require authentication of the attacker, they can usually only be exploited by an insider in a control system environment. Therefore, we generally rate the threat level lower but recommend installing the provided patches promptly.
If you have further questions or require support, please contact our Kundencenter.
Peter Schwark
RSS-Feed
Our RSS feed always keeps you up to date! This way, you’ll receive same-day notification when a new article has been posted to the IT Security Bulletin. Just enter the following link in your feed reader: https://www.vivavis.com/en/category/it-security-en/feed/
You can find out how to integrate the RSS feed into Outlook here.