Patch Alert Issued for Veeam

A critical patch alert has been issued for Veeam Backup & Replication software. The alert addresses a severe vulnerability, tracked as CVE-2024-40711, which allows unauthenticated remote code execution. This flaw could enable attackers to take full control of affected systems without first authenticating to the server. Veeam has released patches to fix this and other vulnerabilities, urging users to update their software immediately. The vulnerability affects version 12.1.2.172 and earlier builds.

The vendor rated the flaw 9.8 on the 10-point CVSS scale and credited its discovery to researcher Florian Hauser at cybersecurity service provider Code White.

Find out about all of Veeam's vulnerabilities and patches required here.

What to do next?

Patch and update your Veeam software to the latest version as soon as possible; don't get exploited by this flaw.

Protect yourself

Patch management software and other security solutions keep an eye out for vulnerabilities and enable you to remedy them quickly.

Grey Matter works with several cyber security partners who can help you protect your business and its data, and ensure you also stay compliant.

Fill in the contact form below if you have any questions or require security solutions, and a member of our dedicated cyber security team will be in touch.