CVE-2025-57790

Summary

A security vulnerability has been identified that allows remote attackers to perform unauthorized file system access through a path traversal issue. The vulnerability may lead to remote code execution.

Affected Software

VendorProductVersion RangeStatus
CommvaultCommCell11.32.0 <= 11.32.101affected
CommvaultCommCell11.36.0 <= 11.36.59affected

Weaknesses

  • CWE-36: CWE-36: Absolute Path Traversal

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References