BugZero | Veeam BugID kb4709 - Veeam Backup for Microsoft Azure Vulnerability

Veeam - Defect ID: kb4709

Veeam Backup for Microsoft Azure Vulnerability - CVE-2025-23082

Veeam - Defect ID: kb4709

Veeam Backup for Microsoft Azure Vulnerability - CVE-2025-23082

Last updated on 1/29/2025

Overall: 0N/A

Severity: 0N/A

Community: 0N/A

Lifecycle: 0N/A

What is the BugZero Risk Score?

Vendor details

Priority: Unspecified
Status: Solved

Overall: 0N/A

Severity: 0N/A

Community: 0N/A

Lifecycle: 0N/A

What is the BugZero Risk Score?

Vendor details

Priority: Unspecified
Status: Solved

Issue Details

CVE-2025-23082 A vulnerability that may allow an attacker to utilize Server-Side Request Forgery (SSRF) to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. Affects Veeam Backup for Microsoft Azure 7.1.0.22 and all earlier versions. Severity: HighCVSS v3.1 Score: 7.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:NSource: Discovered during internal testing.

Solution

This vulnerability was fixed starting in the following build of Veeam Backup for Microsoft Azure:

Original Vendor Announcement

Defect ID: kb2683
Build Numbers and Versions of Veeam Agent for Microsoft Windows
Defect ID: kb2681
Build Numbers and Versions of Veeam Agent for Linux
Defect ID: kb4354
Build Numbers and Versions of Veeam Agent for Mac
Defect ID: kb4356
Build Numbers and Versions of Veeam Agent for Oracle Solaris
Defect ID: kb4362
Build Numbers and Versions of Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Veeam - Defect ID: kb4709

Veeam Backup for Microsoft Azure Vulnerability - CVE-2025-23082

Veeam - Defect ID: kb4709

Veeam Backup for Microsoft Azure Vulnerability - CVE-2025-23082

Last updated on 1/29/2025

Vendor details

Vendor details

Description

Issue Details

Solution

Links

Top Veeam defects by risk score

Ready to prevent the next vendor outage?