CVE-2026-21709
published 2026-04-17CVE-2026-21709: A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement.
PriorityP432medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
EPSS
0.17%
6.8th percentile
A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| veeam | backup_and_replication | >= 12 < 12.3.2 | 12.3.2 |
| veeam | software_appliance | >= 13 < 13.0.1 | 13.0.1 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Veeam Backup and Replication/Software Appliance Windows Driver Signature Enforcement command injection (kb4830 / EUVD-2026-23438)
vuldb·2026-04-17
CVE-2026-21709 [CRITICAL] Veeam Backup and Replication/Software Appliance Windows Driver Signature Enforcement command injection (kb4830 / EUVD-2026-23438)
A vulnerability was found in Veeam Backup and Replication and Software Appliance and classified as critical. Affected is an unknown function of the component Windows Driver Signature Enforcement. Such manipulation leads to command injection.
This vulnerability is uniquely identified as CVE-2026-21709. Local access is required to approach this attack. No exploit exists.
It is suggested to upgrade the affected component.
GHSA
GHSA-v446-j5j2-jvvp: A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement
ghsa_unreviewed·2026-04-17
CVE-2026-21709 CWE-77 GHSA-v446-j5j2-jvvp: A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement
A vulnerability allowing a local attacker with administrator privileges to bypass Windows Driver Signature Enforcement.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-17
Published