Commvault Commcell
9 CVEs affecting Commvault Commcell. Latest disclosed: 2025-08-20. Critical: 1, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-34993 | Critical | 9.8 | 2022-01-13 | This vulnerability allows remote attackers to bypass authentication on affected installations of Commvault CommCell 11.22.22. Authentication is not required to… |
CVE-2021-34997 | High | 8.8 | 2022-01-13 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is requi… |
CVE-2021-34996 | High | 8.8 | 2022-01-13 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is requi… |
CVE-2021-34995 | High | 8.8 | 2022-01-13 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is requi… |
CVE-2021-34994 | High | 8.8 | 2022-01-13 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is requi… |
CVE-2025-57791 | | 2025-08-20 | A security vulnerability has been identified that allows remote attackers to inject or manipulate command-line arguments passed to internal components due to i… | |
CVE-2025-57790 | | 2025-08-20 | A security vulnerability has been identified that allows remote attackers to perform unauthorized file system access through a path traversal issue. The vulner… | |
CVE-2025-57789 | | 2025-08-20 | During the brief window between installation and the first administrator login, remote attackers may exploit the default credential to gain admin control. This… | |
CVE-2025-57788 | | 2025-08-20 | A vulnerability in a known login mechanism allows unauthenticated attackers to execute API calls without requiring user credentials. RBAC helps limit the expos… |