Threat Intelligence / CVE / CVE-2023-27532

CVE-2023-27532

CISA KEVRansomware

CVSS 7.5 (HIGH) · EPSS 83.6% · Published 2023-03-10

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-306

Threats tracking this CVE

AI-Augmented FortiGate Mass Exploitation — Russian-Speaking Actor Breaches 600+ Firewalls Across 55 Countries Using LLM-Generated Tooling and Custom MCP Framework — CRITICAL

References

https://www.veeam.com/kb4424
https://www.veeam.com/kb4424
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-27532

Full detection coverage & IOCs for threats exploiting CVE-2023-27532 are available via the Threadlinqs MCP server (Purple tier). View plans →

Markdown version · Threadlinqs Intelligence