Veeam Vulnerability

A vulnerability has been found that could allow an unauthenticated user to request encrypted credentials and potentially access your backup infrastructure hosts. It affects every version of the software.

Veeam has issued patches for V11 and V12 to combat this flaw. It’s important that you update your installations as soon as possible. The patches can be found at https://www.veeam.com/kb4424 as well as a guide for securing your system. Alternatively, if you’re utilizing an all-in-one Veeam appliance without remote infrastructure components, you should block external connections to port TCP 9401 in your backup server’s firewall as a temporary fix until the patch is installed.

If you would like assistance with patching your environment, please contact us.

<a href="https://differentdev.com/jonah-may/" target="_blank">Jonah May</a>

Jonah May

Author

Jonah May is an accomplished IT professional with a wealth of experience in development and product architecture. He has held key positions in various companies, including Global Data Vault and CyberFortress. At Global Data Vault, Jonah served as the Senior Development lead, where he was responsible for managing the development of various products and solutions. Later, Jonah moved to CyberFortress, where he served as the Product Architect and Engineering Manager. He played a critical role in designing the company’s Veeam product offering for DRaaS. His extensive knowledge and expertise in Veeam products and solutions helped CyberFortress develop cutting-edge solutions that met the unique needs of its clients.

Latest posts