Veeam recently acknowledged a critical vulnerability (CVE-2024-40711) which can allow remote code execution. A patch has been released, so it is critical any impacted systems are updated as soon as possible. Veeam has not tested older unsupported versions but is assuming them to be vulnerable as well. Several high severity patches have also been released at the same time, so we recommend investigating these.
