Veeam Backup for Microsoft Azure Vulnerability
(CVE-2025-23082)
Issue Details
CVE-2025-23082
A vulnerability that may allow an attacker to utilize Server-Side Request Forgery (SSRF) to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
Affects Veeam Backup for Microsoft Azure 7.1.0.22 and all earlier versions.
Severity: High
CVSS v3.1 Score: 7.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Source: Discovered during internal testing.
Solution
This vulnerability was fixed starting in the following build of Veeam Backup for Microsoft Azure:
To submit feedback regarding this article, please click this link: Send Article Feedback
To report a typo on this page, highlight the typo with your mouse and press CTRL + Enter.
To report a typo on this page, highlight the typo with your mouse and press CTRL + Enter.