CVE-2023-27532

Published on: Not Yet Published

Last Modified on: 03/16/2023 05:23:00 PM UTC

CVE-2023-27532

Source: Mitre Source: NIST CVE.ORG Print: PDF PDF
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Certain versions of Backup Replication from Veeam contain the following vulnerability:

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

  • CVE-2023-27532 has been assigned by URL Logo [email protected] to track the vulnerability - currently rated as HIGH severity.

CVSS3 Score: 7.5 - HIGH

Attack
Vector 		Attack
Complexity		 Privileges
Required		 User
Interaction
NETWORK LOW NONE NONE
Scope Confidentiality
Impact		 Integrity
Impact		 Availability
Impact
UNCHANGED HIGH NONE NONE

CVE References

Description Tags Link
KB4424: CVE-2023-27532 www.veeam.com
text/html
 URL Logo MISC www.veeam.com/kb4424
By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Related QID Numbers

  • 378062 Veeam Backup and Replication Access Control Vulnerability (kb4424)

Exploit/POC from Github

Zero day exploit that abuses a remote code execution vulnerability in Discord send_emoji API call.

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationVeeamBackup Replication11.0.1.1261AllAllAll
ApplicationVeeamBackup Replication11.0.1.1261-AllAll
ApplicationVeeamBackup Replication11.0.1.1261p20211123AllAll
ApplicationVeeamBackup Replication11.0.1.1261p20211211AllAll
ApplicationVeeamBackup Replication11.0.1.1261p20220302AllAll
ApplicationVeeamBackup Replication12.0.0.1420-AllAll
  • cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:*:*:*:*:*:*:*:
  • cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:-:*:*:*:*:*:*:
  • cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:p20211123:*:*:*:*:*:*:
  • cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:p20211211:*:*:*:*:*:*:
  • cpe:2.3:a:veeam:backup_\&_replication:11.0.1.1261:p20220302:*:*:*:*:*:*:
  • cpe:2.3:a:veeam:backup_\&_replication:12.0.0.1420:-:*:*:*:*:*:*:

Social Mentions

Source Title Posted (UTC)
Twitter Icon @c_glemot ? @Veeam has published a high #vulnerability in VBR (CVE-2023-27532). Affected component is the Veeam Backup Servic… twitter.com/i/web/status/1… 2023-03-08 01:33:32
Twitter Icon @c_glemot KB Numbers: 4424 & 4420 Date: March 7, 2023 CVSSv3 Score: 7.5? Impact: Access to the backup infrastructure hosts CVE ID: CVE-2023-27532 2023-03-08 01:39:43
Twitter Icon @Regnor Update: The correct CVE ID is CVE-2023-27532. @Veeam has updated the KB article. veeam.com/kb4424 twitter.com/Regnor/status/… 2023-03-08 07:19:52
Twitter Icon @WorkingHardInIT Call to action: Patch your Veeam Backup & Repository v11a & v12 for CVE-2023-27532. If still on an older unsupport… twitter.com/i/web/status/1… 2023-03-08 07:32:36
Twitter Icon @sjtsolutions Achtung Schwachstelle - CVE-2023-27532 Das solltet ihr dringend tun: VEEAM-Server patchen! Bei Fragen oder Probl… twitter.com/i/web/status/1… 2023-03-08 09:49:56
Twitter Icon @etguenni Veeam fixt kritische Schwachstelle CVE-2023-27532 in Backup & Replication V11a/V12 borncity.com/blog/2023/03/0… #Backup… twitter.com/i/web/status/1… 2023-03-08 14:24:49
Twitter Icon @IFTECHAG ❗ CVE-2023-27532: Veeam hat eine "High Severity" Sicherheitslücke bei #Backup & Replication bekannt gegeben. Versio… twitter.com/i/web/status/1… 2023-03-08 17:10:42
Twitter Icon @foxbook 「この欠陥 (CVE-2023-27532 として追跡) は、2 月中旬に Shanigen として知られるセキュリティ研究者によって報告され、Veeam Backup & Replication (VBR) のすべてのバージョンに影響します」 2023-03-08 20:18:55
Twitter Icon @ohhara_shiojiri "Veeam addressed a high-severity vulnerability in the Backup Service, tracked as CVE-2023-27532 (CVSS v3 score: 7.5… twitter.com/i/web/status/1… 2023-03-09 02:11:03
Twitter Icon @TechTalkThai Veeam แพตช์แก้ไขช่องโหว่รุนแรงที่เปิดทางสู่การแฮ็กได้ techtalkthai.com/veeam-patches-… 2023-03-09 04:55:53
Twitter Icon @etguenni Veeam fixes critical vulnerability CVE-2023-27532 in Backup & Replication V11a/V12 borncity.com/win/?p=28996 #Backup… twitter.com/i/web/status/1… 2023-03-09 06:03:07
Twitter Icon @empalis Wie Sie die aktuelle Sicherheitslücke CVE-2023-27532 in Veeam Backup & Replication schließen:… twitter.com/i/web/status/1… 2023-03-09 07:04:54
Twitter Icon @ITConnect_fr ? La faille de sécurité importante CVE-2023-27532 affecte toutes les versions de Veeam Backup & Replication ! L'édi… twitter.com/i/web/status/1… 2023-03-09 07:20:00
Twitter Icon @xyberpwn Veeam Backup Service security vulnerability reported (CVE-2023-27532) All Veeam Backup & Replication (#VBR) versio… twitter.com/i/web/status/1… 2023-03-09 08:39:57
Twitter Icon @magellan_net Security Announcement Veeam Die Sicherheitslücke (CVE-2023-27532) betrifft alle Versionen von Veeam Backup & Repli… twitter.com/i/web/status/1… 2023-03-09 09:00:18
Twitter Icon @JAMESWT_MHT #VEEAM Published:2023-03-07 P20230223 Vulnerability (CVE-2023-27532) in Veeam Backup Service was fixed. Thi… twitter.com/i/web/status/1… 2023-03-09 10:20:17
Twitter Icon @__kokumoto Veeam社が自社のバックアップ&レプリケーションソフトにおける脆弱性(CVE-2023-27532)を修正。認証不要で暗号化された認証情報を含む構成データベースを取得でき、それを用いてバックアップインフラにアクセスできる脆弱性。… twitter.com/i/web/status/1… 2023-03-09 12:38:11
Twitter Icon @andbonom Vulnerability CVE-2023-27532 in Veeam Backup & Replication component allows to obtain encrypted credentials stored… twitter.com/i/web/status/1… 2023-03-09 14:10:21
Twitter Icon @s_net ?? CVE-2023-27532 in a Veeam Backup & Replication ? veeam.com/kb4424 #DBS #Veeam 2023-03-09 16:15:10
Twitter Icon @codewhitesec CVE-2023-27532 in Veeam Backup & Replication is serious, expect exploitation attempts soon. Our teammate… twitter.com/i/web/status/1… 2023-03-09 21:50:48
Twitter Icon @wdormann @codewhitesec @mwulftange The Veeam writeup for CVE-2023-27532 states that an attacker can access *encrypted* crede… twitter.com/i/web/status/1… 2023-03-09 23:35:21
Twitter Icon @ipssignatures The vuln CVE-2023-27532 has a tweet created 0 days ago and retweeted 14 times. twitter.com/codewhitesec/s… #pow1rtrtwwcve 2023-03-10 00:06:00
Twitter Icon @TheCyberSecHub Veeam Backup & Replication admins, get patching! (CVE-2023-27532) dlvr.it/Skfgbb 2023-03-10 05:51:32
Twitter Icon @shah_sheikh Veeam Backup & Replication admins, get patching! (CVE-2023-27532): Veeam Software has patched CVE-2023-27532, a hig… twitter.com/i/web/status/1… 2023-03-10 05:53:06
Twitter Icon @cipherstorm Veeam Backup & Replication admins, get patching! (CVE-2023-27532): Veeam Software has patched CVE-2023-27532, a hig… twitter.com/i/web/status/1… 2023-03-10 05:54:45
Twitter Icon @Xc0resecurity Veeam Backup & Replication admins, get patching! (CVE-2023-27532) dlvr.it/SkfjfM 2023-03-10 06:11:36
Twitter Icon @SecurityNewsbot Veeam Backup & Replication admins, get patching! (CVE-2023-27532) helpnetsecurity.com/2023/03/10/cve… #HelpNetSecurity 2023-03-10 06:30:14
Twitter Icon @Sec_Cyber Veeam Backup & Replication admins, get patching! (CVE-2023-27532) securecybersolution.com/veeam-backup-r… 2023-03-10 07:13:04
Twitter Icon @joviannfeed Help Net Security | "Veeam Backup & Replication admins, get patching! (CVE-2023-27532)" bit.ly/3ZTO0SV 2023-03-10 07:28:13
Twitter Icon @NoLabNoPartY [Blog] #Veeam #vulnerability CVE-2023-27532 bit.ly/420xvq8 #backup #patch https://t.co/vOn7qF6HQW 2023-03-10 07:59:27
Twitter Icon @NoLabNoPartY [Blog] #Veeam #vulnerability CVE-2023-27532 bit.ly/420xvq8 #backup #patch https://t.co/TJEZvDK9ww 2023-03-10 07:59:41
Twitter Icon @NoLabNoPartY [Blog] #Veeam vulnerability CVE-2023-27532 bit.ly/3yuzm92 #backup #patch #vulnerabilità https://t.co/EgpIEFnSdC 2023-03-10 08:01:05
Twitter Icon @ipssignatures The vuln CVE-2023-27532 has a tweet created 1 days ago and retweeted 11 times. twitter.com/ITConnect_fr/s… #pow1rtrtwwcve 2023-03-10 08:06:00
Twitter Icon @tutos_info Veeam : Voici comment Patcher la vulnérabilité CVE-2023-27532 tutos-informatique.com/veeam-cve20232… 2023-03-10 08:35:11
Twitter Icon @helpnetsecurity Veeam Backup & Replication admins, get patching! (CVE-2023-27532) - helpnetsecurity.com/2023/03/10/cve… - @Veeam @codewhitesec… twitter.com/i/web/status/1… 2023-03-10 09:00:00
Twitter Icon @windowserverit ?? CVE-2023-27532 in a Veeam Backup & Replication Maggiori informazioni ? veeam.com/kb4424 #WindowServerit #Veeam #Security 2023-03-10 09:00:28
Twitter Icon @Cybernozcom Veeam Backup & Replication admins, get patching! (CVE-2023-27532) ift.tt/xBdI9OZ #cybersecurity… twitter.com/i/web/status/1… 2023-03-10 10:22:10
Twitter Icon @etguenni Exploit für kritische Schwachstelle CVE-2023-27532 in Veeam Backup & Replication borncity.com/blog/2023/03/1… #Backup… twitter.com/i/web/status/1… 2023-03-10 10:32:31
Twitter Icon @huzeyfeonal Time to patch for Veeam Backup & Replication admins! CVE-2023-27532 CVSS v3 score: 7.5  allows an unauthenticated u… twitter.com/i/web/status/1… 2023-03-10 11:46:27
Twitter Icon @wdormann Today's example of lying through omission: Veeam CVE-2023-27532 Stated: "to obtain encrypted credentials" Omitted:… twitter.com/i/web/status/1… 2023-03-10 12:06:03
Twitter Icon @HunterMapping CVE-2023-27532 Find Veeam Servies on Hunter Link to search ?? hunter.how/list?searchVal… Refer to: ? @codewhitesec… twitter.com/i/web/status/1… 2023-03-10 12:37:16
Twitter Icon @gustavocg_it Atenção pra quem usa o #Veeam. A vulnerabilidade CVE-2023-27532 permite acesso não autorizado a credenciais criptog… twitter.com/i/web/status/1… 2023-03-10 13:47:40
Twitter Icon @CeptBiro Veeam Backup & Replication admins, get patching! (CVE-2023-27532) helpnetsecurity.com/2023/03/10/cve… #Infosec #Secinfo… twitter.com/i/web/status/1… 2023-03-10 13:57:25
Twitter Icon @CVEtrends Top 3 trending CVEs on Twitter Past 24 hrs: CVE-2023-27532: 871.6K (audience size) CVE-2023-25610: 660.4K CVE-2023… twitter.com/i/web/status/1… 2023-03-10 14:00:04
Twitter Icon @ReneRobichaud Veeam Backup & Replication admins, get patching! (CVE-2023-27532) helpnetsecurity.com/2023/03/10/cve… #Infosec #Secinfo… twitter.com/i/web/status/1… 2023-03-10 14:02:43
Twitter Icon @cchilderhose Veeam Backup & Replication admins, get patching! (CVE-2023-27532) helpnetsecurity.com/2023/03/10/cve… #veeam 2023-03-10 14:48:37
Twitter Icon @STOConsortium It's important to patch!! According to Veeam there's an "Vulnerability CVE-2023-27532 in a #Veeam Backup & Replica… twitter.com/i/web/status/1… 2023-03-10 14:50:37
Twitter Icon @Har_sia CVE-2023-27532 har-sia.info/CVE-2023-27532… #HarsiaInfo 2023-03-10 15:03:52
Twitter Icon @ipssignatures The vuln CVE-2023-27532 has a tweet created 0 days ago and retweeted 12 times. twitter.com/wdormann/statu… #pow1rtrtwwcve 2023-03-10 16:06:01
Twitter Icon @check_scan Serious Vulnerability Patched in Veeam Data Backup Solution. Tracked as CVE-2023-27532 (CVSS score of 7.5), the vul… twitter.com/i/web/status/1… 2023-03-10 16:12:01
Twitter Icon @HackersNews247 Veeam Backup & Replication admins, get patching! (CVE-2023-27532) hackersnews.co.uk/veeam-backup-r… #Hackers #Hacking… twitter.com/i/web/status/1… 2023-03-10 19:22:42
Twitter Icon @IT_news_for_all / Vulnerability CVE-2023-27532 in a Veeam Backup & Replication component allows an unauthenticated user operating w… twitter.com/i/web/status/1… 2023-03-10 19:36:49
Twitter Icon @foxbook Veeam Backup & Replication の管理者は、パッチを適用してください。(CVE-2023-27532) helpnetsecurity.com/2023/03/10/cve… 2023-03-10 20:59:38
Twitter Icon @CVEreport CVE-2023-27532 : Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the c… twitter.com/i/web/status/1… 2023-03-10 22:11:42
Reddit Logo Icon /r/MSSP MSP Dispatch 3/10/23: The AI Bubble, Ransomware’s Top Target, Data Breach Impacts U.S. House Members 2023-03-10 14:59:20
Reddit Logo Icon /r/msp MSP Dispatch 3/10/23: The AI Bubble, Ransomware’s Top Target, Data Breach Impacts U.S. House Members 2023-03-10 14:59:17
Reddit Logo Icon /r/netcve CVE-2023-27532 2023-03-10 23:38:14
Reddit Logo Icon /r/sysadmin Veeam Backup & Replication CVE-2023-27532 2023-03-13 21:33:10
Reddit Logo Icon /r/msp Veeam Backup & Replication CVE-2023-27532 2023-03-13 21:32:47
Reddit Logo Icon /r/blueteamsec CVE-2023-27532 Veeam Backup & Replication leaked credentials - backup store, ransomware operation implications 2023-03-19 09:18:11
Reddit Logo Icon /r/netsec Veeam Backup and Replication CVE-2023-27532 Deep Dive and Linux POC Exploit 2023-03-23 12:39:02
Reddit Logo Icon /r/blueteamsec CVE-2023-27532 | Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts. 2023-03-23 16:50:55
Reddit Logo Icon /r/blueteamsec CVE-2023-27532: POC for Veeam Backup and Replication CVE-2023-27532 2023-03-25 06:15:34
Reddit Logo Icon /r/Veeam Veeam takes full synthethic backup outside schedule after 11a (build 11.0.1.1261 P20230227) 2023-03-30 05:45:24
Reddit Logo Icon /r/msp Hackers target vulnerable Veeam backup servers exposed online 2023-04-30 13:53:42
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report