Skip to main content

CVE-2025-23120 - A vulnerability allowing remote code execution (RCE) by authenticated domain users.

Mohamed Ali
Forum|alt.badge.img+2

 

Hello Community, 

 

Latest security update (build number 12.3.1.1139) released from Veeam

CVE-2025-23120 - CVSS 9.9 - KB4724

A vulnerability allowing remote code execution (RCE) by authenticated domain users.

Severity: Critical
CVSS v3.1 Score: 9.9
Source: Reported by Piotr Bazydlo of watchTowr.

 

Note: This vulnerability only impacts domain-joined backup servers.

Download URL: https://download2.veeam.com/VBR/v12/VeeamBackup&Replication_12.3.1.1139_20250315.iso

MD5: 70E802E77F3FC109E85F8FA859F31950
SHA1: 308E6AE02474208A08418734598CFBA0E7AF82D0

 

There are additional features and resolved issues included in this latest update: https://www.veeam.com/kb4696

Mohamed Ali | VUG leader | VMCE 2024, VCP-DCV, CCP-V

7 comments

Chris.Childerhose
Forum|alt.badge.img+21

Nice to see another CVE covered but not looking forward to another round of patching servers again to this latest release build. 😫

Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | vExpert 6* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
Link State
Tommy O'Shea
lukas.k
4 people like this
  • Link State
    Link State
  • Tommy O'Shea
    Tommy O'Shea
  • lukas.k
    lukas.k
  • Mohamed Ali
    Mohamed Ali
Tommy O'Shea
Forum|alt.badge.img+3
  • Tommy O'Shea
  • Experienced User
  • 101 comments
  • March 19, 2025
Chris.Childerhose wrote:

Nice to see another CVE covered but not looking forward to another round of patching servers again to this latest release build. 😫

Yeah, it seems like every time we complete a round of patching, a month later we hear about another required patch :(

Tommy O’Shea, VMCE, VMCE-SP, VMCA
Chris.Childerhose
Link State
Mohamed Ali
3 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • Link State
    Link State
  • Mohamed Ali
    Mohamed Ali
RonV
Forum|alt.badge.img
  • RonV
  • Comes here often
  • 40 comments
  • March 19, 2025

It would be nice to have JUST the security patch, instead of having to upgrade to  the next release level, which also includes a bunch of other items.

Chris.Childerhose
Link State
Tommy O'Shea
6 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • Link State
    Link State
  • Tommy O'Shea
    Tommy O'Shea
  • lukas.k
    lukas.k
  • Mohamed Ali
    Mohamed Ali
  • H
    howdoyoudo
Tommy O'Shea
Forum|alt.badge.img+3
  • Tommy O'Shea
  • Experienced User
  • 101 comments
  • March 19, 2025
RonV wrote:

It would be nice to have JUST the security patch, instead of having to upgrade to  the next release level, which also includes a bunch of other items.

Agreed! Especially if it could somehow be applied without requiring the restart of the service or server causing downtime.

Tommy O’Shea, VMCE, VMCE-SP, VMCA
Chris.Childerhose
Link State
Mohamed Ali
4 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • Link State
    Link State
  • Mohamed Ali
    Mohamed Ali
  • H
    howdoyoudo
vAdmin
Forum|alt.badge.img+2
  • vAdmin
  • Influencer
  • 168 comments
  • March 20, 2025

Wow, thank you for sharing ​@Mohamed Ali , the .ISO file is quite big.

Is there any chance to share or perform the security update only? 

Microsoft Azure Solutions Architect Expert, VMware Certified Professional - DCV 7, Citrix Certified Professional Virtualization (CCP-V), ITIL Practitioner
Chris.Childerhose
Link State
Tommy O'Shea
4 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • Link State
    Link State
  • Tommy O'Shea
    Tommy O'Shea
  • Mohamed Ali
    Mohamed Ali
Chris.Childerhose
Forum|alt.badge.img+21
vAdmin wrote:

Wow, thank you for sharing ​@Mohamed Ali , the .ISO file is quite big.

Is there any chance to share or perform the security update only? 

There is an update ISO but not just a patch no.

Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | vExpert 6* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
Link State
Tommy O'Shea
Mohamed Ali
3 people like this
  • Link State
    Link State
  • Tommy O'Shea
    Tommy O'Shea
  • Mohamed Ali
    Mohamed Ali
Link State
Forum|alt.badge.img+11
  • Link State
  • Veeam Legend
  • 605 comments
  • March 20, 2025

Fortunately, all my vbrs are not joined to a domain. 😆

Veeam: VMCA | VMCE | VMXP | Veeam Legend - Microsoft: MCITP | MCP | MCSA | 2008 R2 | 2012R2 | 2016 | MCSE Core Infrastructure | MCSE Cloud Platform - Azure: AZ900 | AZ104| AZ500 - AWS Cloud Practitioner - VMWare: VCP-DCV Vsphere 7.x - Cisco: CCNA (Expired)
Chris.Childerhose
vAdmin
Tommy O'Shea
3 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • vAdmin
    vAdmin
  • Tommy O'Shea
    Tommy O'Shea

Comment


Terms & Conditions