Veeam resolves CVSS 9.0 RCE flaw and other security issues

Veeam released patches for several Backup & Replication vulnerabilities, notably a critical RCE (CVE-2025-59470, CVSS 9.0) that can be abused by Backup or Tape Operator roles via malicious interval or order parameters, plus other flaws (CVE-2025-55125, CVE-2025-59468, CVE-2025-59469) enabling RCE or file write as root; fixes are included in Veeam Backup & Replication 13.0.1.1071 and the vendor reports no clear evidence of in-the-wild exploitation.