Vulnerability detail

Enriched intelligence for a single CVE

7.5

CVSS
High

CVE-2023-27532

PUBLISHED

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This...

Exploited in the wild Used in malware Remote Low complexity No user interaction

Vendor: Veeam
Product: Veeam Backup & Replication
Published: Mar 10, 2023
EPSS: —

Description

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

cisa malware ransomware nessus_scanner

CVSS scores

CVSS v3.1 7.5 High

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitation status

Exploited in the wild

Recorded 2023-08-22 00:00:00 UTC · Source

Used in malware

Recorded 2023-08-22 00:00:00 UTC · Source

SSVC decision points

Exploitation: active
Automatable: Yes
Technical impact: partial

References

https://www.veeam.com/kb4424

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CISA	Aug 22, 2023

Scanner integrations

Scanner	Reference	Detected
Nessus	https://www.tenable.com/plugins/nessus/173398	Jun 02, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

sfewer-r7/CVE-2023-27532

github · Created 2023-03-23 16:08:43 UTC · 110 stars

Exploit for CVE-2023-27532 against Veeam Backup & Replication

horizon3ai/CVE-2023-27532

github · Created 2023-03-18 16:20:53 UTC · 63 stars

POC for Veeam Backup and Replication CVE-2023-27532

Timeline

CVE ID Reserved

March 02, 2023
CVE Published to Public

March 10, 2023
Exploit Used in Malware

August 22, 2023
Added to KEVIntel

August 22, 2023
Detected by Nessus

June 02, 2025