cbcvebase.
CVE-2025-48983
published 2025-10-31

CVE-2025-48983: A vulnerability in the Mount service of Veeam Backup & Replication, which allows for remote code execution (RCE) on the Backup infrastructure hosts by an…

PriorityP265critical9.9CVSS 3.1
AVNACLPRLUINSCCHIHAH
EPSS
0.80%
51.9th percentile
A vulnerability in the Mount service of Veeam Backup & Replication, which allows for remote code execution (RCE) on the Backup infrastructure hosts by an authenticated domain user.

Affected

2 ranges
VendorProductVersion rangeFixed in
veeambackup_and_replication12.3.2 – 12.3.2
veeamveeam_backup_replication>= 12.0.0.1402 < 12.3.2.416512.3.2.4165
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.