Vulnerability in this Veeam Backup & Replication component allows unauthorized users to obtain encrypted credentials stored in the configuration database. The vulnerability may lead to these unauthorized users gaining access to backup infrastructure hosts. The vulnerable process Veeam.Backup.Service.exe (TCP 9401 by default) allows unauthenticated users to request encrypted credentials.
Veeam released new patches to fix this vulnerability on March 7, 2023. No Hosts restart is required after installing this patch.
The detailed information is as the link.
1. Log in to the Veeam server.
2. Download Veeam Backup & Replication 12 cumulative patch P20230223 installation package from the above link. (You need to sign in).
3. Open Veeam Backup & Replication console.
4. Click Connect on the Veeam Backup & Replication 12 page.
5. Enter the MFA Confirmation code and click Confirm.
6. Verify the existing Veeam Backup &Replication version from Veeam Backup & Replication console (Help |Abut). Please confirm you are running Veeam Backup &Replication build 22.214.171.1240 before installing this cumulative patch P20230223.
7. Ensure all jobs are successful, disable them, and close the console.
8. Exact the VeeamBackup&Replication_126.96.36.1990_20230223.zip file, run VeeamBackup&Replication_188.8.131.520_20230223.exe.
9. Click Yes on the User Account Control page.
10. On the Welcome to cumulative patch P20230223 for Veeam Backup & Replication 12 Installation Wizard page and click Next.
11. Click Install on the Ready to Install page.
12. Click Finish on the Cumulative Patch P20230223 for Veeam Backup & Replication 12 has been Installed successfully page.
13. Open Veeam Backup & Replication console.
14. Click Connect on the Veeam Backup & Replication 12 page.
15. Enter the MFA Confirmation code and click Confirm.
16. Select all servers on the Components Update page, and click Apply.
17. On the Update page, ensure all components have been upgraded for all servers and click Finish.
18. . Verify the Veeam Backup &Replication version from Veeam Backup & Replication console (Help |Abut) and ensure the build version is 184.108.40.2060 P20230223.
19. Right-click all jobs, and unselect Disable to enable all jobs.
I hope you enjoy this post.
Web Site: carysun.com
Blog Site: checkyourlogs.net
Blog Site: gooddealmart.com
Author: Cary Sun
Cary Sun has a wealth of knowledge and expertise in data center and deployment solutions. As a Principal Consultant, he likely works closely with clients to help them design, implement, and manage their data center infrastructure and deployment strategies.
With his background in data center solutions, Cary Sun may have experience in server and storage virtualization, network design and optimization, backup and disaster recovery planning, and security and compliance management. He holds CISCO CERTIFIED INTERNETWORK EXPERT (CCIE No.4531) from 1999. Cary is also a Microsoft Most Valuable Professional (MVP), Microsoft Azure MVP, Veeam Vanguard and Cisco Champion. He is a published author with several titles, including blogs on Checkyourlogs.net, and the author of many books.
Cary is a very active blogger at checkyourlogs.net and is permanently available online for questions from the community. His passion for technology is contagious, improving everyone around him at what they do.
Blog site: https://www.checkyourlogs.net
Web site: https://carysun.com
Blog site: https://gooddealmart.com
Amazon Author: https://Amazon.com/author/carysun