Commvault Addresses Security Vulnerabilities
Commvault has recently released updates to address four security gaps that could potentially be exploited to achieve remote code execution on vulnerable instances. These vulnerabilities were identified in Commvault versions prior to 11.36.60.
List of Vulnerabilities:
CVE-2025-57788 (CVSS score: 6.9) – A vulnerability in a known login mechanism allows unauthenticated attackers to execute API calls without requiring user authentication.
The details of these security flaws were brought to light in a recent report by The Hacker News. According to the report, these vulnerabilities could be exploited by malicious actors to gain unauthorized access to sensitive systems and execute arbitrary code remotely.
It is crucial for users of Commvault to update their software to the latest version (11.36.60) to mitigate the risk of exploitation. By promptly installing the necessary patches, organizations can enhance the security of their systems and protect against potential threats.
For more information on these security vulnerabilities and the importance of updating your Commvault software, you can refer to the original article by clicking here.