cvelistv5 - cve-2025-23114

CVE-2025-23114 (GCVE-0-2025-23114)

Vulnerability from cvelistv5 – Published: 2025-02-05 01:45 – Updated: 2025-03-13 18:23

Summary

A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate.

Severity ?

9 (Critical)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE

CWE-295 - Improper Certificate Validation

Assigner

hackerone

References

URL

Tags

https://www.veeam.com/kb4712

Impacted products

Vendor

Product

Version

Veeam

Backup for AWS

Affected: 7.0 , ≤ 7.0 (semver)

Veeam	Backup for Microsoft Azure	Affected: 6.0 , ≤ 6.0 (semver)
Veeam	Backup for Google Cloud	Affected: 5.0 , ≤ 5.0 (semver)
Veeam	Backup for Nutanix AHV	Affected: 5.1 , ≤ 5.1 (semver)
Veeam	Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization	Affected: 4.1 , ≤ 4.1 (semver)
Veeam	Backup for Salesforce	Affected: 3.1 , ≤ 3.1 (semver)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-23114",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-05T14:47:20.649153Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-295",
                "description": "CWE-295 Improper Certificate Validation",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-13T18:23:04.462Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Backup for AWS",
          "vendor": "Veeam",
          "versions": [
            {
              "lessThanOrEqual": "7.0",
              "status": "affected",
              "version": "7.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Backup for Microsoft Azure",
          "vendor": "Veeam",
          "versions": [
            {
              "lessThanOrEqual": "6.0",
              "status": "affected",
              "version": "6.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Backup for Google Cloud",
          "vendor": "Veeam",
          "versions": [
            {
              "lessThanOrEqual": "5.0",
              "status": "affected",
              "version": "5.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Backup for Nutanix AHV",
          "vendor": "Veeam",
          "versions": [
            {
              "lessThanOrEqual": "5.1",
              "status": "affected",
              "version": "5.1",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization",
          "vendor": "Veeam",
          "versions": [
            {
              "lessThanOrEqual": "4.1",
              "status": "affected",
              "version": "4.1",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Backup for Salesforce",
          "vendor": "Veeam",
          "versions": [
            {
              "lessThanOrEqual": "3.1",
              "status": "affected",
              "version": "3.1",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "baseScore": 9,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-02-05T01:45:03.336Z",
        "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "shortName": "hackerone"
      },
      "references": [
        {
          "url": "https://www.veeam.com/kb4712"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
    "assignerShortName": "hackerone",
    "cveId": "CVE-2025-23114",
    "datePublished": "2025-02-05T01:45:03.336Z",
    "dateReserved": "2025-01-11T01:00:00.617Z",
    "dateUpdated": "2025-03-13T18:23:04.462Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-23114\",\"sourceIdentifier\":\"support@hackerone.com\",\"published\":\"2025-02-05T02:15:28.610\",\"lastModified\":\"2025-03-13T19:15:51.643\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en el componente Veeam Updater permite a los atacantes de tipo Man-in-the-Middle ejecutar c\u00f3digo arbitrario en el servidor afectado. Este problema se produce debido a una falla en la validaci\u00f3n correcta del certificado TLS.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":9.0,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"references\":[{\"url\":\"https://www.veeam.com/kb4712\",\"source\":\"support@hackerone.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-23114\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-05T14:47:20.649153Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-295\", \"description\": \"CWE-295 Improper Certificate Validation\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-12T20:43:27.189Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_0\": {\"version\": \"3.0\", \"baseScore\": 9, \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H\"}}], \"affected\": [{\"vendor\": \"Veeam\", \"product\": \"Backup for AWS\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"7.0\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Veeam\", \"product\": \"Backup for Microsoft Azure\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.0\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Veeam\", \"product\": \"Backup for Google Cloud\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.0\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Veeam\", \"product\": \"Backup for Nutanix AHV\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.1\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Veeam\", \"product\": \"Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"4.1\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Veeam\", \"product\": \"Backup for Salesforce\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"3.1\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://www.veeam.com/kb4712\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate.\"}], \"providerMetadata\": {\"orgId\": \"36234546-b8fa-4601-9d6f-f4e334aa8ea1\", \"shortName\": \"hackerone\", \"dateUpdated\": \"2025-02-05T01:45:03.336Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-23114\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-13T18:23:04.462Z\", \"dateReserved\": \"2025-01-11T01:00:00.617Z\", \"assignerOrgId\": \"36234546-b8fa-4601-9d6f-f4e334aa8ea1\", \"datePublished\": \"2025-02-05T01:45:03.336Z\", \"assignerShortName\": \"hackerone\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2025-AVI-0094

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans les produits Veeam. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Veeam	Veeam Backup	Veeam Updater versions antérieures à 7.9.0.1124 dans Veeam Backup pour Salesforce versions 3.1 et antérieures
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1127 dans Veeam Backup pour Oracle Linux Virtualization Manager et Red Hat Virtualization versions 3, 4.0 et 4.1
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1126 dans Veeam Backup pour AWS versions 6a et 7
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1128 dans Veeam Backup pour Google Cloud versions 4 et 5
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1128 dans Veeam Backup pour Microsoft Azure versions 5a et 6
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1125 dans Veeam Backup pour Nutanix AHV versions 5.0 et 5.1

References

Title

Publication Time

Tags

Bulletin de sécurité Veeam kb4712

2025-02-04

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 7.9.0.1124 dans Veeam Backup pour Salesforce versions 3.1 et ant\u00e9rieures",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1127 dans Veeam Backup pour Oracle Linux Virtualization Manager et Red Hat Virtualization versions 3, 4.0 et 4.1",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1126 dans Veeam Backup pour AWS versions 6a et 7",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1128 dans Veeam Backup pour Google Cloud versions 4 et 5",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1128 dans Veeam Backup pour Microsoft Azure versions 5a et 6",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0  9.0.0.1125 dans Veeam Backup pour Nutanix AHV versions 5.0 et 5.1",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-23114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-23114"
    }
  ],
  "links": [],
  "reference": "CERTFR-2025-AVI-0094",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-02-05T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans les produits Veeam. Elle permet \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.",
  "title": "Vuln\u00e9rabilit\u00e9 dans les produits Veeam",
  "vendor_advisories": [
    {
      "published_at": "2025-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 Veeam kb4712",
      "url": "https://www.veeam.com/kb4712"
    }
  ]
}

CERTFR-2025-AVI-0094

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans les produits Veeam. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Veeam	Veeam Backup	Veeam Updater versions antérieures à 7.9.0.1124 dans Veeam Backup pour Salesforce versions 3.1 et antérieures
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1127 dans Veeam Backup pour Oracle Linux Virtualization Manager et Red Hat Virtualization versions 3, 4.0 et 4.1
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1126 dans Veeam Backup pour AWS versions 6a et 7
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1128 dans Veeam Backup pour Google Cloud versions 4 et 5
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1128 dans Veeam Backup pour Microsoft Azure versions 5a et 6
Veeam	Veeam Backup	Veeam Updater versions antérieures à 9.0.0.1125 dans Veeam Backup pour Nutanix AHV versions 5.0 et 5.1

References

Title

Publication Time

Tags

Bulletin de sécurité Veeam kb4712

2025-02-04

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 7.9.0.1124 dans Veeam Backup pour Salesforce versions 3.1 et ant\u00e9rieures",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1127 dans Veeam Backup pour Oracle Linux Virtualization Manager et Red Hat Virtualization versions 3, 4.0 et 4.1",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1126 dans Veeam Backup pour AWS versions 6a et 7",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1128 dans Veeam Backup pour Google Cloud versions 4 et 5",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0 9.0.0.1128 dans Veeam Backup pour Microsoft Azure versions 5a et 6",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    },
    {
      "description": "Veeam Updater versions ant\u00e9rieures \u00e0  9.0.0.1125 dans Veeam Backup pour Nutanix AHV versions 5.0 et 5.1",
      "product": {
        "name": "Veeam Backup",
        "vendor": {
          "name": "Veeam",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-23114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-23114"
    }
  ],
  "links": [],
  "reference": "CERTFR-2025-AVI-0094",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-02-05T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans les produits Veeam. Elle permet \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.",
  "title": "Vuln\u00e9rabilit\u00e9 dans les produits Veeam",
  "vendor_advisories": [
    {
      "published_at": "2025-02-04",
      "title": "Bulletin de s\u00e9curit\u00e9 Veeam kb4712",
      "url": "https://www.veeam.com/kb4712"
    }
  ]
}

GHSA-6J39-893G-Q8CF

Vulnerability from github – Published: 2025-02-05 03:32 – Updated: 2025-02-05 03:32

Details

Severity ?

9.0 (Critical)


                  
                    CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-23114"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-295"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-02-05T02:15:28Z",
    "severity": "CRITICAL"
  },
  "details": "A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate.",
  "id": "GHSA-6j39-893g-q8cf",
  "modified": "2025-02-05T03:32:13Z",
  "published": "2025-02-05T03:32:13Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23114"
    },
    {
      "type": "WEB",
      "url": "https://www.veeam.com/kb4712"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2025-23114

Vulnerability from fkie_nvd - Published: 2025-02-05 02:15 - Updated: 2025-03-13 19:15

Severity ?

9.0 (Critical) - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Summary

References

	URL	Tags
	support@hackerone.com	https://www.veeam.com/kb4712

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en el componente Veeam Updater permite a los atacantes de tipo Man-in-the-Middle ejecutar c\u00f3digo arbitrario en el servidor afectado. Este problema se produce debido a una falla en la validaci\u00f3n correcta del certificado TLS."
    }
  ],
  "id": "CVE-2025-23114",
  "lastModified": "2025-03-13T19:15:51.643",
  "metrics": {
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.0,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 6.0,
        "source": "support@hackerone.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-02-05T02:15:28.610",
  "references": [
    {
      "source": "support@hackerone.com",
      "url": "https://www.veeam.com/kb4712"
    }
  ],
  "sourceIdentifier": "support@hackerone.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-295"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

NCSC-2025-0060

Vulnerability from csaf_ncscnl - Published: 2025-02-13 09:48 - Updated: 2025-02-13 09:48

Summary

Kwetsbaarheid verholpen in Veeam

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

Veeam heeft een kwetsbaarheid verholpen in de Veeam Updater component.

Interpretaties

De kwetsbaarheid bevindt zich in de wijze waarop de Veeam Updater component TLS-certificaten valideert. Onvoldoende validatie kan Man-in-the-Middle aanvallers in staat stellen om willekeurige code uit te voeren op de getroffen servers. Dit kan leiden tot ongeautoriseerde toegang en manipulatie van serveroperaties.

Oplossingen

Veeam heeft updates uitgebracht om de kwetsbaarheid te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Veeam heeft een kwetsbaarheid verholpen in de Veeam Updater component.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheid bevindt zich in de wijze waarop de Veeam Updater component TLS-certificaten valideert. Onvoldoende validatie kan Man-in-the-Middle aanvallers in staat stellen om willekeurige code uit te voeren op de getroffen servers. Dit kan leiden tot ongeautoriseerde toegang en manipulatie van serveroperaties.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Veeam heeft updates uitgebracht om de kwetsbaarheid te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
        "title": "CWE-79"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; nvd",
        "url": "https://www.veeam.com/kb4712"
      }
    ],
    "title": "Kwetsbaarheid verholpen in Veeam",
    "tracking": {
      "current_release_date": "2025-02-13T09:48:03.729080Z",
      "id": "NCSC-2025-0060",
      "initial_release_date": "2025-02-13T09:48:03.729080Z",
      "revision_history": [
        {
          "date": "2025-02-13T09:48:03.729080Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "backup_for_aws",
            "product": {
              "name": "backup_for_aws",
              "product_id": "CSAFPID-1757695",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:veeam:backup_for_aws:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "backup_for_microsoft_azure",
            "product": {
              "name": "backup_for_microsoft_azure",
              "product_id": "CSAFPID-1749109",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:veeam:backup_for_microsoft_azure:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "backup_for_google_cloud",
            "product": {
              "name": "backup_for_google_cloud",
              "product_id": "CSAFPID-1757696",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:veeam:backup_for_google_cloud:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "backup_for_nutanix_ahv",
            "product": {
              "name": "backup_for_nutanix_ahv",
              "product_id": "CSAFPID-1634899",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:veeam:backup_for_nutanix_ahv:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "backup_for_oracle_linux_virtualization_manager_and_red_hat_virtualization",
            "product": {
              "name": "backup_for_oracle_linux_virtualization_manager_and_red_hat_virtualization",
              "product_id": "CSAFPID-1634900",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:veeam:backup_for_oracle_linux_virtualization_manager_and_red_hat_virtualization:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "backup_for_salesforce",
            "product": {
              "name": "backup_for_salesforce",
              "product_id": "CSAFPID-1757697",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:veeam:backup_for_salesforce:*:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "veeam"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-23114",
      "notes": [
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1757695",
          "CSAFPID-1749109",
          "CSAFPID-1757696",
          "CSAFPID-1634899",
          "CSAFPID-1634900",
          "CSAFPID-1757697"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-23114",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23114.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-1757695",
            "CSAFPID-1749109",
            "CSAFPID-1757696",
            "CSAFPID-1634899",
            "CSAFPID-1634900",
            "CSAFPID-1757697"
          ]
        }
      ],
      "title": "CVE-2025-23114"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-23114 (GCVE-0-2025-23114)

CERTFR-2025-AVI-0094

Solutions

CERTFR-2025-AVI-0094

Solutions

GHSA-6J39-893G-Q8CF

FKIE_CVE-2025-23114

NCSC-2025-0060

Tags

Sightings

Nomenclature