CVE-2026-32997

high Veeam
CVSS v3 Base Score
8.6
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.0%
Exploitation probability in 30 days
Top 88% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Published: May 28, 2026 (42 days ago)
Last Modified: May 29, 2026
Vendor: Veeam
Source: MITRE

Description

A vulnerability allowing an authenticated user with the Backup Administrator role to write arbitrary files on Linux-based Veeam Backup & Replication server.

CWE

CWE-36

Affected Products

Veeam Backup and Replication

References