Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist

stapp · Mar 21, 2025

In patching the latest critical remote code execution (RCE) bug in Backup and Replication, software shop Veeam is attracting criticism from researchers for the way it handles uncontrolled deserialization vulnerabilities.
Click to expand...

https://www.theregister.com/2025/03/20/infoseccers_criticize_veeam_over_critical/

Also see here
https://www.bleepingcomputer.com/ne...s-domain-users-hack-backup-servers-patch-now/

Those companies using Veeam Backup & Replication should make it a priority to upgrade to 12.3.1 as soon as possible.
Furthermore, given ransomware gangs' interest in this application, it is strongly advised to review Veeam's best practices and disconnect the server from your domain.
Click to expand...

Log in or Sign up

Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist

stapp Global Moderator

Log in or Sign up

Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist

stapp Global Moderator

Useful Searches