| ID |
CVE-2025-34028
|
| Sažetak |
A path traversal vulnerability in Commvault Command Center Innovation Release allows an unauthenticated actor to upload ZIP files, which, when expanded by the target server, result in Remote Code Execution.
This issue affects Command Center Innovation Release: 11.38. |
| Reference |
|
| CVSS |
| Base: | 10.0 |
| Impact: | 6.0 |
| Exploitability: | 3.9 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| LOW |
HIGH |
HIGH |
|
| CVSS vektor |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H |
| Zadnje važnije ažuriranje |
22-04-2025 - 17:16 |
| Objavljeno |
22-04-2025 - 17:16 |
