CNNVD-202507-3282 Information
CNNVD ID
CNNVD-202507-3282
Related CVE
- CNNVD Published: 2025-07-25
Description (Chinese)
Commvault for Windows是美国Commvault公司的一个数据备份、恢复软件。 Commvault for Windows存在安全漏洞,该漏洞源于DLL注入,可能导致任意代码执行。以下版本受到影响:11.20.0版本、11.28.0版本、11.32.0版本、11.34.0版本和11.36.0版本。
Description (English)
Commvault for Windows is a data backup and recovery software for Comvault in the United States. There is a security loophole in the Commvault for Windows, which originates from the DLL injection, which may lead to any code execution. The following versions were affected: 11.2.0, 11.28.0, 11.32.0, 11.34.0 and 11.36.0.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Commvault
Published
2025-07-25
Last Modified
2026-02-24
References
https://documentation.commvault.com/securityadvisories/CV_2024_09_2.html https://www.vulncheck.com/advisories/commvault-for-windows-maintenance-installer-dll-injection https://access.redhat.com/security/cve/cve-2024-13976
Patch
https://documentation.commvault.com/securityadvisories/CV_2024_09_1.html
Share on: