CVE-2021-35971

CRITICAL

Veeam Backup and Replication <10.0.1.4854-11.0.0.837 - Deserialization

Title source: llm

Description

Veeam Backup and Replication 10 before 10.0.1.4854 P20210609 and 11 before 11.0.0.837 P20210507 mishandles deserialization during Microsoft .NET remoting.

References (2)

Scores

CVSS v3 9.8
EPSS 0.0077
EPSS Percentile 73.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-502
Status published

Affected Products (1)

veeam/veeam_backup_\&_replication < 10.0.1.4854

Timeline

Published Jun 30, 2021
Tracked Since Feb 18, 2026