Veeam Backup & Replication is a backup platform for virtual environments built on VMware vSphere and Microsoft Hyper-V hypervisors. The software provides backup, restoration, and replication functionality for virtual machines, physical servers, and workstations, as well as cloud-based workloads.

Veeam Backup & Replication

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution (RCE) in high availability (HA) deployments of Veeam Backup & Replication.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-21708	CRITICAL	9.9	Veeam Backup & Replication	cpe:2.3:a:veeam:backup_and_replication	No	Yes	Mar 12, 2026
CVE-2026-21669	CRITICAL	9.9	Veeam Backup & Replication	cpe:2.3:a:veeam:veeam_backup_\&_replication	No	Yes	Mar 12, 2026
CVE-2026-21671	CRITICAL	9.1	Veeam Backup & Replication	cpe:2.3:a:veeam:veeam_backup_\&_replication	No	Yes	Mar 12, 2026
CVE-2026-21672	HIGH	8.8	Veeam Backup & Replication	cpe:2.3:a:veeam:backup_and_replication	No	Yes	Mar 12, 2026
CVE-2026-21670	MEDIUM	6.5	Veeam Backup & Replication	cpe:2.3:a:veeam:veeam_backup_\&_replication	No	Yes	Mar 12, 2026

CVE-2026-21671:
Veeam Backup & Replication vulnerability analysis and mitigation

9.1

Related Veeam Backup & Replication vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-21671: Veeam Backup & Replication vulnerability analysis and mitigation