Veeam Backup for Microsoft Azure is vulnerable to Server-Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.veeam.com/kb4709 |
![]() ![]() |
History
Thu, 03 Jul 2025 01:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Veeam
Veeam veeam Backup For Microsoft Azure |
|
CPEs | cpe:2.3:a:veeam:veeam_backup_for_microsoft_azure:*:*:*:*:*:*:*:* | |
Vendors & Products |
Veeam
Veeam veeam Backup For Microsoft Azure |
Tue, 14 Jan 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 14 Jan 2025 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-918 |
Tue, 14 Jan 2025 02:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Veeam Backup for Microsoft Azure is vulnerable to Server-Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. | |
References |
| |
Metrics |
cvssV3_0
|

Status: PUBLISHED
Assigner: hackerone
Published: 2025-01-14T01:46:14.729Z
Updated: 2025-01-14T15:51:53.014Z
Reserved: 2025-01-10T19:05:52.771Z
Link: CVE-2025-23082

Updated: 2025-01-14T15:51:48.647Z

Status : Analyzed
Published: 2025-01-14T02:15:08.163
Modified: 2025-07-03T00:38:34.703
Link: CVE-2025-23082

No data.