What is CVE-2020-25780?

CVE-2020-25780 is a vulnerability in N/a. Published 2020-10-29.

Is CVE-2020-25780 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2020-25780

In CommCell in Commvault before 14.68, 15.x before 15.58, 16.x before 16.44, 17.x before 17.29, and 18.x before 18.13, Directory Traversal can occur such that an attempt to view a log file can instead view a file outside of the log-files f…

EPSS: 0.573 (98.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates

References

kb.commvault.com/article/63264 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-25780?: CVE-2020-25780 is a vulnerability in N/a. Published 2020-10-29.
Is CVE-2020-25780 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.