Veeam Backup & Rep RCE via HA Authenticated Backup Admin
CVE-2026-21671 Published on March 12, 2026

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution (RCE) in high availability (HA) deployments of Veeam Backup & Replication.

NVD

Affected Versions

Veeam Software Appliance:

Version 13.0.1 and below 13.0.1 is affected.

Exploit Probability

EPSS

0.31%

Percentile

53.67%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Veeam Backup & Rep RCE via HA Authenticated Backup AdminCVE-2026-21671 Published on March 12, 2026

Affected Versions

Exploit Probability

Veeam Backup & Rep RCE via HA Authenticated Backup Admin
CVE-2026-21671 Published on March 12, 2026