CVE-2026-44963: Veeam Backup & Replication

What is CVE-2026-44963?

A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user.

CVSSawaiting NVD

ExploitationNo exploitation reported

Triage statusUnder Review

ActionSchedule for next cycle

CWECWE-502

NVD published2026-06-09

NVD last modified2026-06-09

Affected product

Veeam Backup & Replication

Remediation Steps

Apply the latest security patch from Veeam for Backup & Replication
Restrict Backup Server access to authenticated domain users only
Monitor backup server logs for suspicious authentication and code execution activity
Isolate affected backup servers from untrusted network segments until patched

References

Coverage on defend.network

Vulnerability Priority Report – Week 2 of June 2026 (June 8 – 14)
Microsoft 200-patch record, Veeam RCE critical, GitHub supply-chain worm ongoing (2026-06-10)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

What is CVE-2026-44963?

Affected product

Remediation Steps

References

Coverage on defend.network

Get Critical CVE Alerts