Critical severity9.1NVD Advisory· Published Mar 12, 2026· Updated May 10, 2026
CVE-2026-21671
CVE-2026-21671
Description
A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution (RCE) in high availability (HA) deployments of Veeam Backup & Replication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:veeam:veeam_backup_\&_replication:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:veeam:veeam_backup_\&_replication:*:*:*:*:*:*:*:*range: >=13.0.0.496,<=13.0.1.1071
- (no CPE)
- Veeam/Software Appliancev5Range: 13.0.1
Patches
Vulnerability mechanics
References
1- www.veeam.com/kb4831nvdVendor Advisory
News mentions
0No linked articles in our index yet.