CVE-2025-59470
Published Jan 8, 2026
Last updated 13 hours ago
AI description
CVE-2025-59470 is a vulnerability identified in Veeam Backup & Replication software, specifically affecting version 13.0.1.180 and all prior builds within the version 13 series. This flaw enables an authenticated user with either "Backup Operator" or "Tape Operator" roles to achieve remote code execution (RCE) as the 'postgres' user. The exploitation occurs by manipulating and sending a malicious interval or order parameter within the system. Veeam has released an urgent security update, build 13.0.1.1071, to address this and other related vulnerabilities. It is important to note that earlier versions of Veeam Backup & Replication, such as 12.x and older, are not impacted by this specific issue.
- Description
- This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres user by sending a malicious interval or order parameter.
- Source
- support@hackerone.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 9
- Impact score
- 6
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
- Severity
- CRITICAL
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-77
- Hype score
- Not currently trending
CVE-2025-59470 This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres user by sending a malicious interval or order parameter. https://t.co/HT9rFktunM
@CVEnew
9 Jan 2026
86 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Veeam Backup & Replication 13、複数の深刻な脆弱性を修正(CVE-2025-55125,CVE-2025-59469,CVE-2025-59470) https://t.co/ZXXGIil0Ia #セキュリティ対策Lab #セキュリティ #Security #サイバー攻撃
@securityLab_jp
9 Jan 2026
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 CVE-2025-59470 - Critical This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres user by sending a malicious interval or order parameter. https://t.co/4r94gr17Qw https://t.co/mGGspO4I9O
@TheHackerWire
8 Jan 2026
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-59470: CRITICAL] This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres user by sending a malicious interval or order parameter.#cve,CVE-2025-59470,#cybersecurity https://t.co/db181kYNOD https://t.co/e3u0BYNPF5
@CveFindCom
8 Jan 2026
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Veeam Backup & Replication update patches critical code execution flaws exploitable by privileged attackers to execute remote code or write as root. CVE-2025-59470 among high severity vulnerabilities. #DataBackup #RiskManagement #USA https://t.co/N7reuNLgxQ
@TweetThreatNews
8 Jan 2026
112 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Veeam patches critical RCE flaws in Backup & Replication, including CVE-2025-59470 impacting 13.0.1.180 and earlier. Update to 13.0.1.1071 to block postgres and root level attacks. #Veeam https://t.co/ckFUJjAEmG
@threatcluster
7 Jan 2026
43 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Vulnerabilidades en productos Veeam ❗ CVE-2025-59470 ❗ CVE-2025-59469 ❗ CVE-2025-55125 ➡️ Más info: https://t.co/PHcUIlg0AM https://t.co/Ue2fejS1cH
@CERTpy
7 Jan 2026
99 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Security Bulletin: Veeam B&R (CVE-2025-59470, CVSS 9.0) lets Backup/Tape Operators execute arbitrary code via crafted parameters. Upgrade to 13.0.1.1071 now. #ThreatIntel #RedLeggCTI https://t.co/2K2TOLUSAf
@RedLegg
7 Jan 2026
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Veeam Patches Multiple Code-Execution Bugs That Could Enable RCE on Backup Servers Veeam released updates fixing four Backup & Replication flaws (including CVE-2025-59470 and related issues) that can be abused for code execution—generally requiring high-privilege roles
@ThreatSynop
7 Jan 2026
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Veeam Fixes CVSS 9.0 RCE (CVE-2025-59470) in Backup & Replication — Operator Role Abuse Veeam patched a high-impact flaw where a Backup/Tape Operator can trigger remote code execution as the `postgres` user by sending malicious `interval` or `order` parameters, alongsi
@ThreatSynop
7 Jan 2026
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 أصدرت Veeam تحديثات أمان لمعالجة عدة ثغرات في برنامج Backup & Replication، بما في ذلك ثغرة حرجة يمكن أن تؤدي إلى تنفيذ تعليمات برمجية عن بُعد (RCE) مصنفة برقم CVSS 9.0.
@Cybercachear
7 Jan 2026
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Veeam fixed a critical Backup & Replication flaw enabling remote code execution as the postgres user. CVE-2025-59470 can be abused by authenticated Backup or Tape Operators via crafted parameters. The update also fixes two additional RCE flaws and a root-level file w
@TheHackersNews
7 Jan 2026
8790 Impressions
28 Retweets
75 Likes
8 Bookmarks
0 Replies
0 Quotes
【いつもの】Veeam Backup & Replicationで重大(Critical)な脆弱性が修正。CVE-2025-59470はCVSSスコア9.0の遠隔コード実行。大本営は、攻撃にあたって「高権限」(実際はオペレータ権限)が必要であることを理由に深刻
@__kokumoto
7 Jan 2026
3178 Impressions
2 Retweets
9 Likes
5 Bookmarks
0 Replies
1 Quote
【セキュリティ ニュース】Veeamバックアップ製品に深刻な脆弱性 - 推奨環境ではリスク低減(1ページ目 / 全2ページ):Security NEXT https://t.co/k6OCApErAb 『「CVE-2025-59470」は、「Backup Operator」や「Tape
@taku888infinity
7 Jan 2026
90 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes