Lucene search

K
cvelistHackeroneCVELIST:CVE-2023-27532
HistoryMar 10, 2023 - 12:00 a.m.

CVE-2023-27532

2023-03-1000:00:00
CWE-306
hackerone
www.cve.org
veeam backup
credentials exposure
infrastructure access

0.022 Low

EPSS

Percentile

89.5%

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Veeam Backup & Replication",
    "versions": [
      {
        "version": "Fixed Versions: v12 (build 12.0.0.1420 P20230223)",
        "status": "affected"
      },
      {
        "version": "11a (build 11.0.1.1261 P20230227)",
        "status": "affected"
      }
    ]
  }
]