6 matches found
CVE-2021-34997
CVE-2021-34997 affects Commvault CommCell 11.22.22 (vulnerable versions include 11.22.x; fixed in 11.25+ per CNVD). Root cause: AppStudioUploadHandler validates user-supplied data inadequately, allowing arbitrary file uploads. This leads to remote code execution in the NETWORK SERVICE context. Ex...
CVE-2020-25780
CVE-2020-25780 affects Commvault CommCell before 14.68, 15.x before 15.58, 16.x before 16.44, 17.x before 17.29, and 18.x before 18.13. It is a local file inclusion/directory traversal vulnerability where an attacker can view a log-file request and access files outside the log-files folder. The N...
CVE-2021-34993
CVE-2021-34993 is an authentication-bypass vulnerability in Commvault CommCell’s CVSearchService. Remote attackers can bypass authentication on affected installations (e.g., CommCell 11.22.22) due to lack of proper validation prior to authentication. Multiple sources (NVD description referencing ...
CVE-2021-34994
CVE-2021-34994 affects Commvault CommCell 11.22.22. The vulnerability resides in the DataProvider class, caused by lack of validation of a user-supplied string before executing it as JavaScript, allowing an attacker to escape the JavaScript sandbox and execute Java code in the NETWORK SERVICE con...
CVE-2021-34996
CVE-2021-34996 affects Commvault CommCell 11.22.22, with a flaw in Demo_ExecuteProcessOnGroup that lets an attacker create a workflow to execute arbitrary commands as SYSTEM. Authentication bypass is possible; CVSS 3.1/8.8 (HIGH). Red Hat and CNVD note impact on versions prior to 11.25; upgrade t...
CVE-2021-34995
CVE-2021-34995 affects Commvault CommCell 11.22.22 via the DownloadCenterUploadHandler, where unsafely validated user-supplied data allows arbitrary file uploads and, in the NETWORk SERVICE context, code execution. The issue can be exploited with network access and low complexity; CVSS v3.1/3.0 s...