See our Managed Services and learn how we can help your firm.

Veeam Backup & Replication Vulnerability (CVE-2023-27532)

March 13, 2023

A vulnerability been found in Veeam Backup & Replication that enables an unauthenticated user to request encrypted credentials, which can give them access to server hosts used for backup infrastructure.

Veeam.Backup.Service.exe (uses port TCP 9401) can be exploited and allow an unauthenticated user to request encrypted credentials.

Affected Products

All versions of Veeam Backup & Replication

Remediation

Apply patches provided by Veeam – https://www.veeam.com/kb4424

References

https://community.veeam.com/blogs-and-podcasts-57/vulnerability-cve-2023-27532-applying-patch-4381
https://www.veeam.com/kb4424

Contact Cornerstone.IT for assistance remediating this issue. If you are a small or mid-sized law firm, Cornerstone.IT’s dedicated 24/7 Network Operations Center (NOC) can help you with future patches, monitoring, and other mundane tasks that keep you from focusing on moving your firm forward.

Veeam Backup & Replication Vulnerability (CVE-2023-27532)

Affected Products

Remediation

References

Services

Partners

Company

The Corner View

2026 IT Budget Planning: Why Predictability, Security, and Modernization Matter More Than Ever

2026 IT Budget Planning: Key Trends Law Firms Can’t Ignore

Citrix Issues Critical Security Advisory for NetScaler ADC and Gateway – Immediate Action Required

Cornerstone.IT Transitioning to the New ISO 27001:2022 Standard

Why Migrating from VMware to Microsoft Azure is a Smart Move

Microsoft 365 Direct Send Abuse Phishing Campaign

Citrix NetScaler ADC and NetScaler Gateway Vulnerability – Citrix Bleed 2 NetScaler flaw

More Posts →