{"id":10535,"date":"2025-10-15T13:27:52","date_gmt":"2025-10-15T06:27:52","guid":{"rendered":"https:\/\/infosec.new88088.net\/?p=10535"},"modified":"2026-02-05T13:27:58","modified_gmt":"2026-02-05T06:27:58","slug":"veeam-backup-replication-doi-mat-nguy-co-chiem-quyen-vi-hai-lo-hong-rce","status":"publish","type":"post","link":"https:\/\/infosec.new88088.net\/2025\/10\/15\/veeam-backup-replication-doi-mat-nguy-co-chiem-quyen-vi-hai-lo-hong-rce\/","title":{"rendered":"Veeam Backup & Replication \u0111\u1ed1i m\u1eb7t nguy c\u01a1 chi\u1ebfm quy\u1ec1n v\u00ec hai l\u1ed7 h\u1ed5ng RCE"},"content":{"rendered":"

Veeam, n\u1ec1n t\u1ea3ng sao l\u01b0u doanh nghi\u1ec7p \u0111\u01b0\u1ee3c v\u00ed nh\u01b0 \u201cphao c\u1ee9u sinh d\u1eef li\u1ec7u\u201d, v\u1eeba ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 kh\u1ea9n c\u1ea5p cho ba l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng, trong \u0111\u00f3 c\u00f3 hai l\u1ed7 h\u1ed5ng th\u1ef1c thi m\u00e3 t\u1eeb xa (RCE) \u0111\u1ea1t \u0111i\u1ec3m CVSS g\u1ea7n tuy\u1ec7t \u0111\u1ed1i 9,9. Nh\u1eefng l\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng tr\u1ef1c ti\u1ebfp \u0111\u1ebfn h\u1ec7 th\u1ed1ng Veeam Backup & Replication, c\u00f4ng c\u1ee5 \u0111\u01b0\u1ee3c h\u00e0ng ngh\u00ecn t\u1ed5 ch\u1ee9c tr\u00ean to\u00e0n c\u1ea7u tin d\u00f9ng \u0111\u1ec3 b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u tr\u1ecdng y\u1ebfu trong h\u1ea1 t\u1ea7ng c\u00f4ng ngh\u1ec7 th\u00f4ng tin. N\u1ebfu b\u1ecb khai th\u00e1c, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 gi\u00e0nh quy\u1ec1n ki\u1ec3m so\u00e1t m\u00e1y ch\u1ee7 sao l\u01b0u v\u00e0 m\u1edf r\u1ed9ng x\u00e2m nh\u1eadp s\u00e2u h\u01a1n v\u00e0o m\u1ea1ng n\u1ed9i b\u1ed9 c\u1ee7a doanh nghi\u1ec7p.<\/b><\/p>\n

\n
\"Veeam.png\"<\/div>\n<\/div>\n

Hai l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng nh\u1ea5t c\u00f3 m\u00e3 \u0111\u1ecbnh danh CVE-2025-48983 v\u00e0 CVE-2025-48984, \u0111\u1ec1u li\u00ean quan \u0111\u1ebfn c\u00e1c th\u00e0nh ph\u1ea7n c\u1ed1t l\u00f5i c\u1ee7a ph\u1ea7n m\u1ec1m. Theo khuy\u1ebfn c\u00e1o t\u1eeb Veeam, CVE-2025-48983 b\u1eaft ngu\u1ed3n t\u1eeb d\u1ecbch v\u1ee5 Mount trong Veeam Backup & Replication, cho ph\u00e9p m\u1ed9t t\u00e0i kho\u1ea3n ng\u01b0\u1eddi d\u00f9ng trong c\u00f9ng m\u00f4i tr\u01b0\u1eddng m\u1ea1ng \u0111\u00e3 \u0111\u01b0\u1ee3c x\u00e1c th\u1ef1c c\u00f3 th\u1ec3 th\u1ef1c thi m\u00e3 t\u1eeb xa tr\u00ean m\u00e1y ch\u1ee7 sao l\u01b0u. \u0110i\u1ec1u \u0111\u00e1ng ch\u00fa \u00fd l\u00e0 k\u1ebb t\u1ea5n c\u00f4ng kh\u00f4ng c\u1ea7n quy\u1ec1n qu\u1ea3n tr\u1ecb h\u1ec7 th\u1ed1ng, m\u00e0 ch\u1ec9 c\u1ea7n m\u1ed9t t\u00e0i kho\u1ea3n c\u00f3 quy\u1ec1n truy c\u1eadp h\u1ee3p l\u1ec7, n\u00ean nguy c\u01a1 \u0111\u1ebfn t\u1eeb vi\u1ec7c t\u00e0i kho\u1ea3n b\u1ecb x\u00e2m nh\u1eadp ho\u1eb7c b\u1ecb \u0111\u00e1nh c\u1eafp l\u00e0 r\u1ea5t l\u1edbn.<\/p>\n

Trong khi \u0111\u00f3, CVE-2025-48984 \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn th\u00e0nh ph\u1ea7n Backup Server, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng \u0111\u00e3 c\u00f3 quy\u1ec1n truy c\u1eadp h\u1ee3p l\u1ec7 trong m\u1ea1ng n\u1ed9i b\u1ed9 doanh nghi\u1ec7p th\u1ef1c thi m\u00e3 t\u00f9y \u00fd t\u1eeb xa tr\u00ean m\u00e1y ch\u1ee7 sao l\u01b0u. N\u00f3i c\u00e1ch kh\u00e1c, l\u1ed7 h\u1ed5ng n\u00e0y \u0111\u00f2i h\u1ecfi k\u1ebb t\u1ea5n c\u00f4ng ph\u1ea3i c\u00f3 kh\u1ea3 n\u0103ng k\u1ebft n\u1ed1i \u0111\u1ebfn m\u00e1y ch\u1ee7 Veeam trong c\u00f9ng h\u1ec7 th\u1ed1ng m\u1ea1ng ho\u1eb7c \u0111\u00e3 chi\u1ebfm \u0111\u01b0\u1ee3c m\u1ed9t t\u00e0i kho\u1ea3n ng\u01b0\u1eddi d\u00f9ng trong mi\u1ec1n.<\/p>\n

C\u1ea3 hai l\u1ed7 h\u1ed5ng \u0111\u1ec1u t\u1ed3n t\u1ea1i tr\u00ean Veeam Backup & Replication phi\u00ean b\u1ea3n 12.3.2.3617 v\u00e0 t\u1ea5t c\u1ea3 c\u00e1c b\u1ea3n 12.x tr\u01b0\u1edbc \u0111\u00f3, ch\u1ee7 y\u1ebfu \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c m\u00e1y ch\u1ee7 \u0111\u01b0\u1ee3c tri\u1ec3n khai trong m\u00f4i tr\u01b0\u1eddng domain c\u1ee7a doanh nghi\u1ec7p. Veeam cho bi\u1ebft c\u00e1c ki\u1ebfn tr\u00fac m\u1edbi h\u01a1n, bao g\u1ed3m Veeam Software Appliance v\u00e0 phi\u00ean b\u1ea3n Backup & Replication v13 s\u1eafp ra m\u1eaft, \u0111\u00e3 \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf l\u1ea1i \u0111\u1ec3 lo\u1ea1i b\u1ecf ho\u00e0n to\u00e0n r\u1ee7i ro n\u00e0y.<\/p>\n

B\u1ea3n v\u00e1 12.3.2.4165 hi\u1ec7n \u0111\u00e3 \u0111\u01b0\u1ee3c ph\u00e1t h\u00e0nh \u0111\u1ec3 kh\u1eafc ph\u1ee5c hai l\u1ed7 h\u1ed5ng RCE n\u00f3i tr\u00ean. Veeam khuy\u1ebfn c\u00e1o ng\u01b0\u1eddi d\u00f9ng tri\u1ec3n khai b\u1ea3n c\u1eadp nh\u1eadt ngay l\u1eadp t\u1ee9c nh\u1eb1m gi\u1ea3m thi\u1ec3u nguy c\u01a1 b\u1ecb khai th\u00e1c trong m\u00f4i tr\u01b0\u1eddng th\u1ef1c t\u1ebf. Do h\u1ec7 th\u1ed1ng sao l\u01b0u th\u01b0\u1eddng ch\u1ee9a to\u00e0n b\u1ed9 d\u1eef li\u1ec7u, c\u1ea5u h\u00ecnh v\u00e0 b\u1ea3n ph\u1ee5c h\u1ed3i c\u1ee7a doanh nghi\u1ec7p, vi\u1ec7c b\u1ecb chi\u1ebfm quy\u1ec1n tr\u00ean m\u00e1y ch\u1ee7 backup c\u00f3 th\u1ec3 d\u1eabn \u0111\u1ebfn h\u1eadu qu\u1ea3 d\u00e2y chuy\u1ec1n nghi\u00eam tr\u1ecdng, t\u1eeb x\u00f3a ho\u1eb7c m\u00e3 h\u00f3a d\u1eef li\u1ec7u cho \u0111\u1ebfn c\u00e0i \u0111\u1eb7t m\u00e3 \u0111\u1ed9c t\u1ed1ng ti\u1ec1n.<\/p>\n

B\u00ean c\u1ea1nh \u0111\u00f3, Veeam c\u0169ng x\u1eed l\u00fd m\u1ed9t l\u1ed7 h\u1ed5ng leo thang \u0111\u1eb7c quy\u1ec1n kh\u00e1c, m\u00e3 CVE-2025-48982, \u0111\u01b0\u1ee3c \u0111\u00e1nh gi\u00e1 \u1edf m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng v\u1edbi \u0111i\u1ec3m CVSS 7.3. L\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn Veeam Agent for Microsoft Windows. N\u00f3 c\u00f3 th\u1ec3 b\u1ecb khai th\u00e1c trong tr\u01b0\u1eddng h\u1ee3p qu\u1ea3n tr\u1ecb vi\u00ean v\u00f4 t\u00ecnh kh\u00f4i ph\u1ee5c m\u1ed9t t\u1ec7p tin \u0111\u1ed9c h\u1ea1i, khi\u1ebfn m\u00e3 \u0111\u1ed9c \u0111\u01b0\u1ee3c th\u1ef1c thi v\u1edbi quy\u1ec1n h\u1ec7 th\u1ed1ng cao nh\u1ea5t. Khi \u0111\u00f3, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 chi\u1ebfm to\u00e0n quy\u1ec1n ki\u1ec3m so\u00e1t thi\u1ebft b\u1ecb. S\u1ef1 c\u1ed1 \u0111\u01b0\u1ee3c ghi nh\u1eadn tr\u00ean c\u00e1c phi\u00ean b\u1ea3n Veeam Agent 6.3.2.1205 v\u00e0 t\u1ea5t c\u1ea3 c\u00e1c b\u1ea3n 6.x tr\u01b0\u1edbc \u0111\u00f3. Veeam \u0111\u00e3 ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 6.3.2.1302 \u0111\u1ec3 kh\u1eafc ph\u1ee5c ho\u00e0n to\u00e0n l\u1ed7 h\u1ed5ng n\u00e0y.<\/p>\n

Vi\u1ec7c Veeam c\u00f4ng b\u1ed1 v\u00e0 kh\u1eafc ph\u1ee5c c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y cho th\u1ea5y r\u1ee7i ro ng\u00e0y c\u00e0ng l\u1edbn \u0111\u1ed1i v\u1edbi h\u1ea1 t\u1ea7ng sao l\u01b0u, v\u1ed1n l\u00e0 m\u1ee5c ti\u00eau h\u00e0ng \u0111\u1ea7u trong nhi\u1ec1u chi\u1ebfn d\u1ecbch t\u1ea5n c\u00f4ng m\u1ea1ng hi\u1ec7n nay. Trong c\u00e1c v\u1ee5 t\u1ea5n c\u00f4ng ransomware g\u1ea7n \u0111\u00e2y, vi\u1ec7c chi\u1ebfm quy\u1ec1n ki\u1ec3m so\u00e1t h\u1ec7 th\u1ed1ng backup \u0111\u1ed3ng ngh\u0129a v\u1edbi vi\u1ec7c tri\u1ec7t ti\u00eau kh\u1ea3 n\u0103ng kh\u00f4i ph\u1ee5c d\u1eef li\u1ec7u c\u1ee7a n\u1ea1n nh\u00e2n. V\u1edbi hai l\u1ed7 h\u1ed5ng RCE \u0111\u1ea1t \u0111i\u1ec3m 9.9, b\u1ea5t k\u1ef3 doanh nghi\u1ec7p n\u00e0o ch\u1eadm tri\u1ec3n khai b\u1ea3n v\u00e1 \u0111\u1ec1u \u0111ang t\u1ef1 \u0111\u1eb7t m\u00ecnh v\u00e0o v\u00f9ng r\u1ee7i ro cao nh\u1ea5t. Veeam nh\u1ea5n m\u1ea1nh r\u1eb1ng vi\u1ec7c \u00e1p d\u1ee5ng b\u1ea3n c\u1eadp nh\u1eadt kh\u00f4ng ch\u1ec9 mang t\u00ednh ph\u00f2ng ng\u1eeba, m\u00e0 c\u00f2n l\u00e0 bi\u1ec7n ph\u00e1p b\u1eaft bu\u1ed9c \u0111\u1ec3 b\u1ea3o v\u1ec7 t\u00ednh to\u00e0n v\u1eb9n d\u1eef li\u1ec7u v\u00e0 duy tr\u00ec kh\u1ea3 n\u0103ng ph\u1ee5c h\u1ed3i c\u1ee7a to\u00e0n b\u1ed9 h\u1ec7 th\u1ed1ng an ninh n\u1ed9i b\u1ed9.<\/p>\n

Theo Security Online<\/i><\/b>\u200b<\/div>\n
Theo: https:\/\/whitehat.vn\/threads\/veeam-backup-replication-doi-mat-nguy-co-chiem-quyen-vi-hai-lo-hong-rce.18837\/<\/a><\/i><\/div>\n","protected":false},"excerpt":{"rendered":"

Veeam, n\u1ec1n t\u1ea3ng sao l\u01b0u doanh nghi\u1ec7p \u0111\u01b0\u1ee3c v\u00ed nh\u01b0 \u201cphao c\u1ee9u sinh d\u1eef li\u1ec7u\u201d, v\u1eeba ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 kh\u1ea9n c\u1ea5p cho ba l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng, trong \u0111\u00f3 c\u00f3 hai l\u1ed7 h\u1ed5ng th\u1ef1c thi m\u00e3 t\u1eeb xa (RCE) \u0111\u1ea1t \u0111i\u1ec3m CVSS g\u1ea7n tuy\u1ec7t \u0111\u1ed1i 9,9. Nh\u1eefng l\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng […]<\/p>\n","protected":false},"author":46,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33],"tags":[],"class_list":["post-10535","post","type-post","status-publish","format-standard","hentry","category-tin-tuc-cua-vien"],"_links":{"self":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10535","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/users\/46"}],"replies":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/comments?post=10535"}],"version-history":[{"count":0,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10535\/revisions"}],"wp:attachment":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/media?parent=10535"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/categories?post=10535"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/tags?post=10535"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}