CRITICALCVE-2026-21708Published Modified CNA hackerone
CVE-2026-21708: A vulnerability allowing a Backup Viewer to perform remote code execution (RCE) as the postgres user
A vulnerability allowing a Backup Viewer to perform remote code execution (RCE) as the postgres user.
Metrics
- CVSS v3.1
- 9.9
- Severity
- CRITICAL
- Fixed in
- 12.3.2
- Affected Products
- 1
Fix available
12.3.213.0.1
Affected packages
- Veeam / Backup and Replication< 12.3.2 (from 12) · < 13.0.1 (from 13)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L