Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
commvault vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-18044
A Command Injection issue exists in ContentStore/Base/CVDataPipe.dll in Commvault before v11 SP6. A certain message parsing function inside the Commvault service does not properly validate the input of an incoming string before passing it to CreateProcess. As a result, a speciall...
Commvault Commvault 11.0
Commvault Commvault
1 Github repository
10
CVSSv2
CVE-2017-3195
Commvault Edge Communication Service (cvd) prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges.
Commvault Edge 11.0.0
1 EDB exploit
10
CVSSv2
CVE-2015-7253
The Web Console in Commvault Edge Server 10 R2 allows remote malicious users to execute arbitrary OS commands via crafted serialized data in a cookie.
Commvault Edge Server 10
9
CVSSv2
CVE-2021-34996
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists ...
Commvault Commcell 11.22.22
7.5
CVSSv2
CVE-2021-34993
This vulnerability allows remote malicious users to bypass authentication on affected installations of Commvault CommCell 11.22.22. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CVSearchService service. The issue results from th...
Commvault Commcell 11.22.22
6.5
CVSSv2
CVE-2021-34994
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists ...
Commvault Commcell 11.22.22
6.5
CVSSv2
CVE-2021-34995
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists ...
Commvault Commcell 11.22.22
6.5
CVSSv2
CVE-2021-34997
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists ...
Commvault Commcell 11.22.22
5
CVSSv2
CVE-2020-25780
In CommCell in Commvault prior to 14.68, 15.x prior to 15.58, 16.x prior to 16.44, 17.x prior to 17.29, and 18.x prior to 18.13, Directory Traversal can occur such that an attempt to view a log file can instead view a file outside of the log-files folder.
Commvault Commcell
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started