CVE Field Guide
About Us
CVE-2026-32996
PUBLISHED
Assigner:
hackerone
Reserved:
17.03.2026
Published:
28.05.2026
Updated:
28.05.2026
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation.
Metrics
CVSS 4.0
CVSS Vector:
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score:
7.3
CVSS score
7.3
Exploitability Metrics
Vulnerable System Impact Metrics
Subsequent System Impact Metrics
Attack Vector
Local
Confidentiality
High
Confidentiality
None
Attack Complexity
Low
Integrity
High
Integrity
None
Attack Requirements
Present
Availability
High
Availability
None
Privileges Required
Low
User Interaction
None
CVSS 4.0
Product Status
Vendor
Veeam
Product
Backup and Replication
Versions
Default:
unaffected
affected from 13 to 13.0.1 (incl.)
References
https://www.veeam.com/kb4852
Problem Types
CWE-532 Insertion of Sensitive Information into Log File
CWE