CVE-2025-24287 MEDIUM

CVE-2025-24287

Vendor Veeam
Product Backup for Microsoft Windows
Published June 18, 2025
Last update June 23, 2025

CVSS base score

6.1/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L

What the vulnerability does

01Description

A vulnerability allowing local system users to modify directory contents, allowing for arbitrary code execution on the local system with elevated permissions.

Key dates

02Disclosure timeline

June 18, 2025 CVE published
June 23, 2025 Record updated