CVE-2026-32997
Deferred Deferred - Pending Action
Authenticated File Write in Veeam Backup & Replication

Publication date: 2026-05-28

Last updated on: 2026-05-28

Assigner: HackerOne

Description
A vulnerability allowing an authenticated user with the Backup Administrator role to write arbitrary files on Linux-based Veeam Backup & Replication server.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-28
Last Modified
2026-05-28
Generated
2026-06-17
AI Q&A
2026-05-28
EPSS Evaluated
2026-06-16
NVD
CVE-2026-32997
EUVD
EUVD-2026-32713
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
veeam backup_and_replication *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-36 The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize absolute path sequences such as "/abs/path" that can resolve to a location that is outside of that directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability allows an authenticated user who has the Backup Administrator role on a Linux-based Veeam Backup & Replication server to write arbitrary files. Essentially, such a user can create or modify files on the server in an unauthorized manner.

Impact Analysis

The vulnerability can lead to unauthorized file creation or modification on the affected server. This could potentially allow an attacker with Backup Administrator privileges to execute malicious code, alter backup data, or disrupt backup operations, thereby compromising the integrity and availability of backup services.

Mitigation Strategies

To mitigate the vulnerability CVE-2026-32997 in Veeam Backup & Replication, users should update to the latest version of the software where the issue is resolved.

Although Resource 1 specifically mentions CVE-2026-32996, it advises updating to Veeam Backup & Replication 13.0.2.29 to resolve a similar high-severity vulnerability, which implies that updating to the latest version is the recommended mitigation step.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-32997. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart