Server-Side Request Forgery in Veeam Backup for Microsoft Azure
CVE-2025-23082

Currently unrated

Key Information:

Vendor: Veeam
Status: Backup For Microsoft Azure
Vendor: CVE Published:; 14 January 2025

Summary

Veeam Backup for Microsoft Azure has a vulnerability that allows an unauthenticated attacker to exploit Server-Side Request Forgery (SSRF). This flaw enables unauthorized requests to be sent from the affected system, which could lead to unforeseen network enumeration or facilitate other security threats. For more details, refer to Veeam's official documentation.

Affected Version(s)

Backup for Microsoft Azure 7.1

References

https://www.veeam.com/kb4709

Timeline

Vulnerability published
Jan 14, 2025
Vulnerability Reserved
Jan 10, 2025