Looking for Non‑Technical Summary of Security Fixes in Veeam 12.3.2.4165 Update

[MJL1495]

Hi Team,

We are currently running on Veeam version 12.3.1.1139 and planning to upgrade to 12.3.2.4165. We were unable to upgrade for a long time due to unavoidable dependencies with internal applications. Also, version 13 has changes in the Veeam One report format, hence we want to stick with 12.3.x for the time being.

In order to upgrade to version 12.3.2.4165, our internal QA Team wants to know how each of the listed vulnerabilities have been fixed, without being too technical.
I understand this is something not available in public domain but would appreciate if someone could provide a short description of how the patch mitigates each vulnerability, it could be something like a new feature or changes in the way a particular component operates.

[ybarrap2003]

Hi @MJL1495 have you share this KB article with them? - https://www.veeam.com/kb4696

[MJL1495]

Hi @ybarrap2003,

I did. However, the follow up question is, how are the mentioned CVEs remediated by the patch update.
For example, in CVE-2025-48983, what was the issue with/behavior of the Mount service that allowed RCE and how is it fixed by this patch. Was this addressed through a new feature, hardening of the existing functionality, or changes in how the Mount Service operates?

I understand this may involve details that are typically internal, but even a brief, high‑level explanation—just a couple of sentences per item—would be very helpful.

[ybarrap2003]

Thanks, @MJL1495 I will ask internally to see if this is something that can be shared.

[ybarrap2003]

@MJL1495 The KB more or less describes the issues -- there were problems identified with the product that required patching to correct. Further details are not available to share at this time, but the items mentioned in the KB article required patching on our side to prevent the vulnerabilities listed.