2025-01-31 08:37:41 Pacfic
Veeam Azure Backup SSRF Vulnerability Patched - 12d
A high-risk Server-Side Request Forgery (SSRF) vulnerability, identified as CVE-2025-23082, has been discovered in Veeam Backup for Microsoft Azure. This flaw allows attackers to send unauthorized requests from the system, leading to potential network enumeration and other attacks. Veeam has released a patch to address this vulnerability. The SSRF vulnerability underscores the risk in cloud-based backup solutions and the need for consistent patch management.
Critical Veeam VSPC Remote Code Execution Vulnerability Patched - 26d
Veeam released patches for critical vulnerabilities (CVE-2024-42448) in its Service Provider Console (VSPC), allowing remote code execution (RCE). The vulnerabilities were discovered during internal testing and have a CVSS score of 9.9, highlighting their extreme severity. The flaw could enable attackers to take complete control of affected systems.