Veeam released an update for Backup & Replication to address four vulnerabilities, including a critical severity bug in Backup Enterprise Manager that could lead to an authentication bypass. The update addresses vulnerabilities impacting versions 5.0 to 12.1.
It includes fixes for high-severity issues, allowing attackers to take over accounts via NTLM relay attacks and steal the NTLM hash of the Veeam Backup Enterprise Manager service account. A low-severity flaw allowing high-privileged users to read backup session logs was also resolved.
Read more – Critical Veeam Vulnerability Leads to Authentication Bypass
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.