See our Managed Services and learn how we can help your firm.

Veeam Backup & Replication Vulnerability (CVE-2023-27532)

March 13, 2023

A vulnerability been found in Veeam Backup & Replication that enables an unauthenticated user to request encrypted credentials, which can give them access to server hosts used for backup infrastructure.

Veeam.Backup.Service.exe (uses port TCP 9401) can be exploited and allow an unauthenticated user to request encrypted credentials.

Affected Products

  • All versions of Veeam Backup & Replication

Remediation

References

Contact Cornerstone.IT for assistance remediating this issue. If you are a small or mid-sized law firm, Cornerstone.IT’s dedicated 24/7 Network Operations Center (NOC) can help you with future patches, monitoring, and other mundane tasks that keep you from focusing on moving your firm forward.

Cornerstone.IT