Keypoints
- Veeam’s Backup & Replication software had a critical remote code execution vulnerability.
- The CVE-2025-59470 flaw affects version 13.0.1.180 and earlier versions.
- Attackers must have Backup or Tape Operator roles to exploit the vulnerability.
- Ransomware gangs actively target Veeam servers for data theft and disruption.
- Over 550,000 customers worldwide, including many Fortune 500 companies, use Veeam products.