top of page
perceptive_background_267k.jpg

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution (RCE) in high availability (HA) deployments o…

Published:

11 maart 2026 om 23:00:00

Alert date:

12 maart 2026 om 22:25:09

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications, Data Breach & Exfiltration

CVE-2026-21671 is a vulnerability in Veeam Backup & Replication that allows authenticated users with Backup Administrator role to perform remote code execution (RCE) in high availability (HA) deployments. This represents a significant security risk as it enables privilege escalation and code execution within backup infrastructure. The vulnerability affects HA configurations specifically, which are commonly used in enterprise environments for redundancy and reliability. Given the critical nature of backup systems in organizational security and disaster recovery, this vulnerability poses substantial risks to data protection and system integrity.

Technical details

Mitigation steps:

Affected products:

Veeam Backup & Replication

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-21671
https://www.veeam.com/kb4831

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page