| KB ID: | 4879 |
| Product: | Veeam Backup & Replication | 13 |
| Published: | 2026-07-14 |
| Last Modified: | 2026-07-14 |
A vulnerability in the Veeam Updater component allows a local user to elevate their privileges and gain root-level access to the underlying operating system.
Severity: High
CVSS Score: 8.4CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Source: Reported through HackerOne by skydesperados.
Impacted Components:
This vulnerability is resolved starting in the Veeam Updater component version 12.3.0.65.
For more information about Veeam Appliance Update configuration, review the product user guide:
Veeam Backup & Replication User Guide: Updating Veeam Appliances
To verify that the Veeam Updater component has been updated, review the component versions on the Veeam Software Appliance or Veeam Infrastructure Appliance using its Host Management Console:
If this KB article did not resolve your issue or you need further assistance with Veeam software, please create a Veeam Support Case.
To submit feedback regarding this article, please click this link: Send Article Feedback
To report a typo on this page, highlight the typo with your mouse and press CTRL + Enter.
This form is only for KB Feedback/Suggestions, if you need help with the software open a support case