CYBERSIXT Signal Over Noise
securityonline.info 5/28/2026, 3:09:22 AM · external

Veeam fixes critical RCE flaw CVE-2026-32998 in backup tools

Veeam fixes critical RCE flaw CVE-2026-32998 in backup tools
CyberSIXT Evidence Panel
Primary Source veeam.com
CVE Intel
CVE-2026-32998 - NVD Not in KEV 0 Patch Unknown
CVE-2026-32996 - NVD Not in KEV 0 Patch Unknown
CVE-2026-32997 - NVD Not in KEV 0 Patch Unknown
CISA KEV Not in KEV
Patch Patch Status Unknown

VEEAM has issued urgent updates to address critical security vulnerabilities in its backup and management tools. Notable vulnerabilities include CVE-2026-32998, a critical remote code execution (RCE) issue discovered in the Veeam Service Provider Console, which has a CVSS score of 9.4. Updates also fix local privilege escalation vulnerabilities in Veeam Agent for Windows (CVE-2026-32996) and an arbitrary file write flaw in the Veeam Software Appliance for Linux (CVE-2026-32997). Administrators are strongly encouraged to apply these patches to safeguard their systems against potential exploits.

View Primary Source Via securityonline.info

Article by CyberSIXT