Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows attackers to upload and execute arbitrary code.
Metrics
Affected Vendors & Products
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 22 Oct 2025 00:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 21 Oct 2025 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 21 Oct 2025 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Mon, 03 Feb 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
kev
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-10-21T23:15:44.043Z
Reserved: 2022-03-06T00:00:00.000Z
Link: CVE-2022-26500

Updated: 2024-08-03T05:03:33.156Z

Status : Modified
Published: 2022-03-17T21:15:08.193
Modified: 2025-10-22T00:18:02.100
Link: CVE-2022-26500

No data.

No data.