"Veeam ONE Monitoring Platform Faces Critical Bug Threat, Warns Veeam"
Veeam has released hotfixes to address four vulnerabilities in its Veeam ONE IT infrastructure monitoring and analytics platform, including two critical flaws that allow remote code execution and theft of NTLM hashes. The vulnerabilities impact actively supported Veeam ONE versions and require admins to replace files on affected servers and restart services. In March, Veeam also patched a high-severity vulnerability in its Backup & Replication software that was later exploited by threat groups like FIN7 and Cuba ransomware gang. Veeam software is widely used by over 450,000 customers globally, including Fortune 500 companies.