Primary

Context

Veeam Backup & Replication and Veeam Software Appliance SSH Credential Extraction Vulnerability

Vulnerability

Patched

A vulnerability exists in Veeam Backup & Replication versions 13.0.1.1071 and earlier, as well as in Veeam Software Appliance, allowing low-privileged users to extract saved SSH credentials. This issue was discovered during internal testing.

Impact

Exploitation of this vulnerability could lead to unauthorized access to SSH credentials, potentially allowing for further exploitation or unauthorized actions on systems where these credentials are used.

Remediation

Users can upgrade to Veeam Backup & Replication 13.0.1.2067 to address this vulnerability.

Added: Mar 12, 2026, 3:22 PM

Updated: Mar 12, 2026, 3:22 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

3.1

remediation

7.7

relevance

3.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

3.1

remediation

7.7

relevance

3.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Veeam Backup & Replication and Veeam Software Appliance SSH Credential Extraction Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Veeam Backup & Replication

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating