ch0k1 ๐Ÿ‡ง๐Ÿ‡ฌ's avatar
ch0k1 ๐Ÿ‡ง๐Ÿ‡ฌ
ch0k1@nostr.theorangepillapp.com
npub1k3qr...9t9m
W3C WAI front-end freelance developer | Angular & NativeScript maniac | DevOps enthusiast | QA evangelist | Crypto investor Travel addict | Summer & beach lover | Party animal | Hopeless Hedonist Citizen of the ๐ŸŒ based in ๐Ÿ‡ง๐Ÿ‡ฌ
ch0k1 ๐Ÿ‡ง๐Ÿ‡ฌ's avatar
ch0k1 11 months ago
Critical Commvault Command Center Flaw Enable Attackers to Execute Code Remotely
The Hacker News
Critical Commvault Command Center Flaw Enables Attackers to Execute Code Remotely
Commvault flaw CVE-2025-34028 enables pre-auth SSRF leading to code execution; fix in 11.38.20+ versions.
 A critical security flaw has been disclosed in the Commvault Command Center that could allow arbitrary code execution on affected installations. The vulnerability, tracked as CVE-2025-34028, carries a CVSS score of 9.0 out of a maximum of 10.0. "A critical security vulnerability has been identified in the Command Center installation, allowing remote attackers to execute arbitrary code without authentication," Commvault said in an advisory published on April 17, 2025. "This vulnerability could lead to a complete compromise of the Command Center environment." originally posted at
Stacker News
Critical Commvault Command Center Flaw Enable Attackers to Execute Code Remotely \ stacker news
A critical security flaw has been disclosed in the Commvault Command Center that could allow arbitrary code execution on affected installations. Th...
โ†‘