A critical security vulnerability has been discovered impacting Veeam Backup & Replication software. This severe flaw, tracked as CVE-2024-29849, is classified with a high severity rating. It allows low-privilege domain users to execute arbitrary code remotely on the vulnerable backup server.
Exploiting this vulnerability grants attackers NT AUTHORITY\SYSTEM privileges, the highest level of access on a Windows system. This means an attacker could potentially compromise the entire backup infrastructure, gain access to sensitive data, deploy malware, or disrupt operations.
The vulnerability affects multiple versions of Veeam Backup & Replication before the release of security patches. It is absolutely essential for organizations using this software to take immediate action. Veeam has released updates to address this issue. Applying the official patches provided by Veeam is the primary recommendation to mitigate this risk and protect your backup servers from potential exploitation. Checking for and installing available updates via the provided Veeam Knowledge Base article is the critical step to secure your environment.
Source: https://www.bleepingcomputer.com/news/security/new-veeam-rce-flaw-lets-domain-users-hack-backup-servers/
