Critical Veeam Vulnerability (CVE-2025-23120)

A newly disclosed remote code execution (RCE) vulnerability in Veeam Backup & Replication (🔥CVSS 9.9) enables authenticated domain users to execute arbitrary code on affected systems.

It affects domain-joined systems running Veeam Backup & Replication 12.3.0.310 or earlier. At the time of this post, no public proof-of-concept exploit had been released.

💡 Fix: Upgrade to 12.3.1 (build 12.3.1.1139)

🔗 KB ID: https://veeam.com/kb4724