Vulnerabilities > Veeam > Veeam Backup Replication > 10.0.1.4854

DATE CVE VULNERABILITY TITLE RISK
2023-03-10 CVE-2023-27532 Missing Authentication for Critical Function vulnerability in Veeam Backup & Replication
Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained.
network
low complexity
veeam CWE-306
7.5
7.5
2022-03-17 CVE-2022-26500 Path Traversal vulnerability in Veeam Backup & Replication
Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows attackers to upload and execute arbitrary code.
network
low complexity
veeam CWE-22
8.8
8.8
2022-03-17 CVE-2022-26501 Missing Authentication for Critical Function vulnerability in Veeam Backup & Replication
Veeam Backup & Replication 10.x and 11.x has Incorrect Access Control (issue 1 of 2).
network
low complexity
veeam CWE-306
critical
 9.8
9.8
2022-03-17 CVE-2022-26504 Improper Authentication vulnerability in Veeam Backup & Replication
Improper authentication in Veeam Backup & Replication 9.5U3, 9.5U4,10.x and 11.x component used for Microsoft System Center Virtual Machine Manager (SCVMM) allows attackers execute arbitrary code via Veeam.Backup.PSManager.exe
network
low complexity
veeam CWE-287
8.8
8.8