Two critical vulnerabilities and one high-severity vulnerability in two separate Veeam software products have been patched. The company has released fixes for all the bugs. The vulnerabilities allow criminals to install malware to steal data or to directly execute commands that extract and delete data from the vulnerable device. Vulnerabilities can be exploited to perform ransomware, data theft and denial-of-service attacks by allowing attackers to:Gain initial access, install malware or achieve other goals. Attackers may try to run code on system hosting the vulnerable application and disrupt the operation of any of the applications running on the system.”]
Source: https://www.cuinfosecurity.com/2-critical-bugs-1-high-severity-bug-affect-veeam-products-a-18736