Summary: Veeam has revealed a critical Server-Side Request Forgery (SSRF) vulnerability, identified as CVE-2025-23082, in its Backup for Microsoft Azure product. This high-severity flaw, with a CVSS score of 7.2, could allow attackers to send unauthorized requests, potentially leading to network enumeration and further malicious activities. Users are urged to upgrade to the patched version to mitigate risks associated with this vulnerability.
Threat Actor: Unknown | unknown
Victim: Veeam | Veeam
Keypoints :
- Vulnerability identified as CVE-2025-23082 with a CVSS score of 7.2.
- Exploitation could lead to unauthorized network enumeration and further attacks.
- Users are advised to upgrade to version 7.1.0.59 or later to address the issue.