CVE-2017-3195
N/A
N/A
Summary
Commvault Edge Communication Service (cvd) prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Commvault | Service Pack 6 | Version 11 prior to SP7 | affected |
| Commvault | Service Pack 6 | version 11 SP6 prior to hotfix 590 | affected |
Weaknesses
- CWE-121: CWE-121: Stack-based Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
- http://kb.commvault.com/article/SEC0013
- http://redr2e.com/commvault-edge-cve-2017-3195/
- https://www.exploit-db.com/exploits/41823/
- https://www.kb.cert.org/vuls/id/214283
- http://www.securityfocus.com/bid/96941
References
- http://kb.commvault.com/article/SEC0013
- http://redr2e.com/commvault-edge-cve-2017-3195/
- https://www.exploit-db.com/exploits/41823/
- https://www.kb.cert.org/vuls/id/214283
- http://www.securityfocus.com/bid/96941
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.