CVE-2025-34028

Confirmed PUBLISHED

Commvault Command Center Innovation Release <= 11.38.25 Unathenticated Install Package Path Traversal

Commvault · Command Center Innovation Release

393 days faster than CISA KEV

Exploited in the wild PoC available

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
Confirmed
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
In CISA KEV
CVSS / EPSS
9.3 Critical EPSS 97.3%

At a Glance

The Commvault Command Center Innovation Release allows an unauthenticated actor to upload ZIP files that represent install packages that, when expanded by the target server, are vulnerable to path traversal vulnerability that can result in Remote Code Execution via malicious JSP. This issue affects Command Center Innovation Release: 11.38.0 to 11.38.20. The vulnerability is fixed in 11.38.20 with SP38-CU20-433 and SP38-CU20-436 and also fixed in 11.38.25 with SP38-CU25-434 and SP38-CU25-438.

cisa nuclei_scanner
CVE Published
Apr 22, 2025
Exploitation Reported
May 02, 2025
CVSS
9.3 Critical
EPSS
97.3%
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
Commvault
Command Center Innovation Release

11.38.0 to <= 11.38.25

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.