Local Directory Modification Vulnerability in Veeam Software
CVE-2025-24287

Currently unrated

Key Information:

Vendor: Veeam
Status: Veeam Software
Vendor: CVE Published:; 19 June 2025

What is CVE-2025-24287?

A vulnerability in Veeam Software permits local users to alter directory contents, which can lead to arbitrary code execution with elevated system permissions. This flaw emphasizes the importance of ensuring that user permissions are correctly configured to prevent unauthorized access and modifications, thus maintaining system integrity and security.

References

https://www.veeam.com/kb4743

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2025