Veeam Product Security Update Advisory

Mar 18 2026

Overview

Veeam has released security updates that address vulnerabilities in its products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2026-21666, CVE-2026-21667

Veeam Backup & Replication versions: 12, 12.1, 12.2, 12.3, 12.3.1, 12.3.2

CVE-2026-21669

Veeam Backup & Replication version: 13

CVE-2026-21708

Veeam Backup & Replication versions: 12, 12.1, 12.2, 12.3, 12.3.1, 12.3.2
Veeam Backup & Replication version: 13

Resolved Vulnerabilities

Remote code execution vulnerability in Veeam Backup & Replication (CVE-2026-21666)
Remote code execution vulnerability in Veeam Backup & Replication (CVE-2026-21667)
Remote code execution vulnerability in Veeam Backup & Replication (CVE-2026-21669)

Remote code execution vulnerability in Veeam Backup & Replication (CVE-2026-21708)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest version of Vulnerability Patches.

CVE-2026-21666, CVE-2026-21667

Veeam Backup & Replication version: 12.3.2.4465

CVE-2026-21669

Veeam Backup & Replication version: 13.0.1.2067

CVE-2026-21708

Veeam Backup & Replication version: 12.3.2.4465
Veeam Backup & Replication version: 13.0.1.2067

References

[1] Vulnerabilities Resolved in Veeam Backup & Replication 12.3.2.4465
https://www.veeam.com/kb4830
[2] Vulnerabilities Resolved in Veeam Backup & Replication 13.0.1.2067
https://www.veeam.com/kb4831

Veeam Product Security Update Advisory

Security Update Advisory for kubectl-mcp-server Command Injection Vulnerability (CVE-2025-69902)

Sequelize Security Update Advisory (CVE-2026-30951)

Tags:

Security Update Advisory for kubectl-mcp-server Command Injection Vulnerability (CVE-2025-69902)

Sequelize Security Update Advisory (CVE-2026-30951)