Microsoft Azure Backup Server allows authenticated users to manipulate files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.8

Microsoft Azure Backup Server allows authenticated users to manipulate files

CVE-2026-21668

Summary

An issue exists in Microsoft Azure Backup Server that allows authorized users to access and modify files in the backup repository. This could potentially lead to unauthorized data changes or disruptions to backups. Update to the latest version of the software to mitigate this vulnerability.

Original title

A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrary files on a Backup Repository.

Original description

A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrary files on a Backup Repository.

nvd CVSS3.1 8.8

https://www.veeam.com/kb4830

Published: 12 Mar 2026 · Updated: 14 Mar 2026 · First seen: 12 Mar 2026