CVE-2026-21672

Summary

A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers.

Affected Software

VendorProductVersion RangeStatus
VeeamBackup and Replication12 < 12.3.2affected
VeeamBackup and Replication13 < 13.0.1affected

Weaknesses

  • CWE-538: CWE-538 File and Directory Information Exposure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References