Veeam Backup & Replication admins, get patching! (CVE-2023-27532)

10 March 2023

Veeam Software has patched CVE-2023-27532, a high-severity security hole in its widely-used Veeam Backup & Replication solution, and is urging customer to implement the fix as soon as possible. About CVE-2023-27532 The nature of CVE-2023-27532 has not been explained – Veeam only says that “the vulnerable process, Veeam.Backup.Service.exe (TCP 9401 by default), allows an unauthenticated user to request encrypted credentials.” Obtaining encrypted credentials might ultimately allow attackers to gain access to the backup infrastructure hosts, the company noted.

Read full article on Help Net Security

Date:

10 March 2023

Categorie(s):

NEWS

Tag(s):

Backups, IT, News, Replication, Veeam

Traceable launches Generative AI API Security to combat AI integration risks8 May 2024
UK opens investigation of MoD payroll contractor after confirming attack8 May 2024
Photos: RSA Conference 20248 May 2024
MITRE breach details reveal attackers’ successes and failures8 May 2024
Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version8 May 2024