CVE-2026-21709

Summary

A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement.

Affected Software

VendorProductVersion RangeStatus
VeeamBackup and Replication12 < 12.3.2affected
VeeamSoftware Appliance13 < 13.0.1affected

Weaknesses

  • CWE-77: CWE-77 Command Injection - Generic

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References