The Web Console in Commvault Edge Server 10 R2 allows remote malicious users to execute arbitrary OS commands via crafted serialized data in a cookie.
commvault edge server 10