Pre-Auth Exploit Chains Found in Commvault Could Enable Remote Code Execution Attacks

Source: The Hacker News | Added:

Commvault has identified and addressed four security vulnerabilities in its software that could allow remote code execution by unauthenticated attackers. These vulnerabilities affect versions prior to 11.36.60 and include a specific issue with a login mechanism enabling unauthorized API calls.

---

Impact: Commvault

In the Wild: Unknown

Age: Newly disclosed

Remediation: Update to Commvault version 11.36.60 or later

Read Full Original Article →