TRY NOW
book meeting
BACK TO KB LIST

List of Security Fixes and Improvements in Veeam Kasten for Kubernetes

KB ID: 4825
Product: Veeam Kasten for Kubernetes | 7 | 7.5 | 8 | 8.5
Kasten K10 by Veeam | 4 | 5 | 5.5 | 6 | 6.5
Published: 2026-03-02
Last Modified: 2026-03-02
mailbox
Get weekly article updates
By subscribing, you are agreeing to have your personal information managed in accordance with the terms of Veeam's Privacy Notice.

Cheers for trusting us with the spot in your mailbox!

Now you’re less likely to miss what’s been brewing in our knowledge base with this weekly digest

error icon

Oops! Something went wrong.

Please, try again later.

Purpose

This article describes all security-related fixes and improvements introduced in each release or update of Veeam Kasten for Kubernetes.

This article aims to provide our customers' security and compliance teams with detailed information on security improvements.

Full product release notes are available here:

Security Fixes and Improvements

Veeam Kasten for Kubernetes 8.5.3

Veeam Kasten for Kubernetes 8.5.2

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.5.1

Veeam Kasten for Kubernetes 8.0.15

  • Upgrade to Go 1.25.5 to address CVE-2025-61727 and CVE-2025-61729.
  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.14

  • Improved logging security for specific block mode datamover upload Pod invocations. It is recommended to upgrade Veeam Kasten to get this fix.

Veeam Kasten for Kubernetes 8.0.13

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.11

  • Upgrade to Go 1.25.3 to mitigate security vulnerabilities.
  • Upgrade to golang.org/x/net@v0.46.0 to address CVE-2025-58190 and CVE-2025-47911.
  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.10

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.8

  • Upgrade to Go 1.24.7 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 8.0.7

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.6

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.
  • Upgrade to Go 1.24.6 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 8.0.5

  • Increased the security of the generated backup repository passwords.
  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.4

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.
  • Upgrade to Go 1.24.5 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 8.0.3

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 8.0.2

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.
  • Upgrade to Go 1.24.4 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 8.0.1

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.
  • Upgrade to Go 1.24.3 to mitigate CVE-2025-22873.

Veeam Kasten for Kubernetes 8.0.0

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 7.5.9

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.
  • Upgrade to Go 1.23.8 to mitigate CVE-2025-22871.

Veeam Kasten for Kubernetes 7.5.8

  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.

Veeam Kasten for Kubernetes 7.5.5

  • Upgrade to Go 1.23.7 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 7.5.4

  • Update K10 services base image to pull in latest security updates.
  • Updated base image used to build Veeam Kasten container images to pull in latest security updates.
  • Upgrade to Go 1.23.6 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 7.5.3

  • Upgraded Prometheus to chart version v26.1.0 to pull in latest security updates.
  • Update K10 services base image to pull in latest security updates.
  • Redacted sensitive information in Kasten logging.

Veeam Kasten for Kubernetes 7.5.2

  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.5.1

  • Basic users are now restricted from viewing application details of applications in other namespaces.
  • Basic users now require specific permission to view each action type through the Veeam Kasten dashboard.
  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.5.0

  • Improved algorithm for authentication cookie validation in OIDC mode. All the users will need to re-login.

Veeam Kasten for Kubernetes 7.0.14

  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.13

  • Update Grafana version to 8.5.8 to pull in the latest security updates.
  • Upgraded Prometheus chart version to 25.28.0 to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.10

  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.9

  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.8

  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.6

  • Fixed critical authentication vulnerability. This upgrade is recommended for all users.

Veeam Kasten for Kubernetes 7.0.5

  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.4

  • Upgrade Fluent Bit to mitigate CVE-2024-4323.
  • Upgrade to Go 1.22.5 to mitigate security vulnerabilities.

Veeam Kasten for Kubernetes 7.0.2

  • Upgrade Python packages to mitigate security vulnerabilities.
  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.1

  • Upgrade to Go 1.22.4 to mitigate security vulnerabilities.
  • Update K10 services base image to pull in latest security updates.

Veeam Kasten for Kubernetes 7.0.0

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.5.14

  • Limited the scope of infrastructure credentials to improve security posture.
  • Upgrade to Go 1.22.3 to mitigate security vulnerabilities.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.5.13

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.5.11

  • Upgraded to Go v1.21.9 to mitigate security vulnerabilities.

Kasten K10 by Veeam 6.5.9

  • Users are now restricted from listing actions in namespaces without proper authorization. All customers are encouraged to upgrade to get the fix for this issue.

Kasten K10 by Veeam 6.5.7

  • Upgraded google.golang.org/protobuf to mitigate CVE-2024-24786.
  • Upgraded to Go v1.21.8 to mitigate security vulnerabilities.
  • Changes in SecurityContextConstraints resource were made to reflect the latest securityContext updates on K10 workloads.
  • Explicitly set runAsNonRoot=true, seccompProfile=RuntimeDefault, allowPrivilegeEscalation=false and capabilities.drop=["ALL"] for K10 service containers.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.5.4

  • Explicitly set runAsNonRoot=true, seccompProfile=RuntimeDefault, allowPrivilegeEscalation=false and capabilities.drop=["ALL"] for K10 service containers.
  • Users are now restricted from restoring data without proper authorization. All customers are encouraged to upgrade to get the fix for this issue.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.5.3

  • Improve logging to prevent logging of sensitive backup location connection details.

Kasten K10 by Veeam 6.5.2

  • Upgrade golang.org/x/crypto to mitigate security vulnerability CVE-2023-48795.
  • Updates dependencies to address security vulnerabilities in 3rd party libraries.

Kasten K10 by Veeam 6.5.1

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.5.0

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.0.10

  • Upgrade to Go v1.21.3 to mitigate security vulnerabilities.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.0.8

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.0.7

  • Upgrade to Go 1.20.8 to mitigate security vulnerabilities.

Kasten K10 by Veeam 6.0.5

  • Upgrade golang.org/x/net to v0.13.0 to mitigate CVE-2023-3978.
  • Upgrade to Go 1.20.7 to mitigate security vulnerabilities.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 6.0.3

  • Updates emissary's Go dependencies to address security vulnerabilities.
  • Upgrade to Go 1.20.6 to mitigate security vulnerabilities.

Kasten K10 by Veeam 6.0.2

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.11

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.9

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.7

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.6

  • Upgrade to Go 1.19.6 to mitigate security vulnerabilities.

Kasten K10 by Veeam 5.5.5

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.4

  • Basic users are now restricted from using transforms in RestoreActions.

Kasten K10 by Veeam 5.5.3

  • It is now possible to prevent basic users from creating ImportActions or RestoreActions. In some multi-tenant environments, these actions should only be available to administrators.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.2

  • Upgrade to Go 1.19.4 to mitigate security vulnerabilities.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.1

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.5.0

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.0.11

  • Upgrade Dex image to mitigate security vulnerabilities.
  • Upgrade to Go 1.19.2 to mitigate security vulnerabilities.

Kasten K10 by Veeam 5.0.9

  • Update Grafana version to 9.1.5 to pull in the latest security updates.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.0.8

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 5.0.5

  • Update K10 services base image to pull in latest security updates.
  • Update Emissary Ingress to 3.1.0 to include latest security updates.

Kasten K10 by Veeam 5.0.3

  • Upgrade to Go 1.17.12 to include the latest security patches.

Kasten K10 by Veeam 5.0.2

  • Update K10 services base image to pull in latest security updates.
  • Update Emissary Ingress (Ambassador) to 3.0.0 to include latest security updates.

Kasten K10 by Veeam 5.0.0

  • Upgrade to Go 1.17.10 to include the latest security patches.

Kasten K10 by Veeam 4.5.15

  • Update Grafana version to 8.5.0 to pull in the latest security updates.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.5.13

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.5.12

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.5.11

  • Update Ambassador to 1.14.3 to include latest security updates.

Kasten K10 by Veeam 4.5.10

Kasten K10 by Veeam 4.5.9

  • Fix CVE-2021-23017 discovered in the previous nginx versions.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.5.7

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.5.6

Kasten K10 by Veeam 4.5.2

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.13

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.10

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.9

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.6

  • Fix proxy requests to secondary clusters to be restricted to the secondary cluster.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.5

  • Update Go to pull in latest security fixes.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.4

  • Update Ambassador to 1.13.6 to include latest security updates.
  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 4.0.3

  • Upgrade golang.org/x/net prevent denial of service (CVE-2021-33194).

Kasten K10 by Veeam 4.0.2

  • Update K10 services base image to pull in latest security updates.

Kasten K10 by Veeam 3.0.13

  • Update Ambassador version to pull in security fixes in Envoy 1.15.4

Kasten K10 by Veeam 3.0.1

  • Mitigate potential crashes caused by malicious certificates.

Kasten K10 by Veeam 2.5.14

  • Module upgrades to address CVE-2020-14040.
  • Upgraded Ambassador to incorporate the Envoy 1.14.3 security update.

Kasten K10 by Veeam 2.5.12

  • When K10 is deployed with OIDC, user-initiated actions (via the API, CLI, or the dashboard) will be attributed to the user instead of the K10 service account.

Kasten K10 by Veeam 2.5.9

  • Upgraded several JavaScript packages to address recently disclosed CVEs.

If this KB article did not resolve your issue or you need further assistance with Veeam software, please create a Veeam Support Case.

To submit feedback regarding this article, please click this link: Send Article Feedback
To report a typo on this page, highlight the typo with your mouse and press CTRL + Enter.

Spelling error in text

Thank you!

Thank you!

Your feedback has been received and will be reviewed.

Oops! Something went wrong.

Please, try again later.

You have selected too large block!

Please try select less.

KB Feedback/Suggestion

This form is only for KB Feedback/Suggestions, if you need help with the software open a support case
By submitting, you are agreeing to have your personal information managed in accordance with the terms of Veeam's Privacy Notice.
Verify your email to continue your product download
We've sent a verification code to:
  • Incorrect verification code. Please try again.
An email with a verification code was just sent to
Didn't receive the code? Click to resend in sec
Didn't receive the code? Click to resend
Start using Veeam:
Download the product
&
Activate the license key
Thank you!

Thank you!

Your feedback has been received and will be reviewed.

error icon

Oops! Something went wrong.

Please, try again later.