{"id":268599,"date":"2026-06-09T12:39:00","date_gmt":"2026-06-09T16:39:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/09\/veeam-backup-replication-rce-flaw-lets-domain-users-run-remote-code\/"},"modified":"2026-06-09T14:55:11","modified_gmt":"2026-06-09T18:55:11","slug":"veeam-backup-replication-rce-flaw-lets-domain-users-run-remote-code","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/09\/veeam-backup-replication-rce-flaw-lets-domain-users-run-remote-code\/","title":{"rendered":"Veeam Backup &#038; Replication RCE Flaw Lets Domain Users Run Remote Code"},"content":{"rendered":"<p><a href=\"https:\/\/thehackernews.com\/2026\/06\/veeam-backup-replication-rce-flaw-lets.html\">Veeam Backup &#038; Replication RCE Flaw Lets Domain Users Run Remote Code<\/a><\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/06\/veeam-backup-replication-rce-flaw-lets.html\">https:\/\/thehackernews.com\/2026\/06\/veeam-backup-replication-rce-flaw-lets.html<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-09 12:39:00<\/a><\/p>\n<p>Source Domain: <a href=\"thehackernews.com\">thehackernews.com<\/a><\/p>\n<p><span class=\"p-author\">\ue804<span class=\"author\">Ravie Lakshmanan<\/span>\ue802<span class=\"author\">Jun 09, 2026<\/span><\/span><span class=\"p-tags\">Vulnerability \/ Backup Software<\/span><\/p>\n<p>Veeam has released security patches to address a critical flaw in its Backup &#038; Replication software that could result in remote code execution.<\/p>\n<p>Tracked as CVE-2026-44963, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.0.<\/p>\n<p>&#8220;A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user,&#8221; Veeam said in a Tuesday advisory.<\/p>\n<p>It credited watchTowr researcher Sina Kheirkhah for responsibly discovering and reporting the issue. It impacts Veeam Backup &#038; Replication 12.3.2.4465 and all earlier versions of 12 builds.<\/p>\n<p>Veeam has noted that the vulnerability does not affect any version 13.x build of the backup software due to architectural changes introduced in version 13.<\/p>\n<p>The shortcoming has been addressed in Veeam Backup &#038; Replication version 12.3.2.4854.<\/p>\n<p>In March 2026, Veeam resolved multiple critical vulnerabilities in Backup &#038; Replication software that, if successfully exploited, could result in remote code execution.<\/p>\n<p>It&#8217;s essential that users update to the latest version for optimal version, particularly given that prior vulnerabilities in the program have been exploited by bad actors, including ransomware groups.<\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/06\/veeam-backup-replication-rce-flaw-lets.html\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Veeam Backup &#038; Replication RCE Flaw Lets Domain Users Run Remote Code https:\/\/thehackernews.com\/2026\/06\/veeam-backup-replication-rce-flaw-lets.html Publish Date:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":268602,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiaIM_y_SajgbuzxJeP8uc2J0ZdX_6Izzhyphenhypheny9PANPhj_Ci0ylC6gnMhvvgeCzMT_AGAQDcAaKpyj_auV5wD8iTtvcfKocAwD61XRdHarhEVyMi9qlmE4aN1wgPOBFP8dH2SWiQh2OPuXY1kAajjypM-Jr1UUpJ_e6L9NInsVJ1qK4nlUFV0zJlR6kn9clw4\/s1600\/veeam.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[27],"class_list":["post-268599","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/268599"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=268599"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/268599\/revisions"}],"predecessor-version":[{"id":268604,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/268599\/revisions\/268604"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/268602"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=268599"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=268599"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=268599"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}