CVE-2025-34028
Commvault Command Center Innovation Release <= 11.38.25 Unathenticated Install Package Path Traversal
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
The Commvault Command Center Innovation Release allows an unauthenticated actor to upload ZIP files that represent install packages that, when expanded by the target server, are vulnerable to path traversal vulnerability that can result in Remote Code Execution via malicious JSP. This issue affects Command Center Innovation Release: 11.38.0 to 11.38.20. The vulnerability is fixed in 11.38.20 with SP38-CU20-433 and SP38-CU20-436 and also fixed in 11.38.25 with SP38-CU25-434 and SP38-CU25-438.
| CWE | CWE-22 CWE-306 |
| Vendor | commvault |
| Product | command center innovation release |
| Published | Apr 22, 2025 |
| Last Updated | Nov 29, 2025 |
โ ๏ธ Actively Exploited โ Act Now
Get instant alerts for commvault command center innovation release
This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2025-34028.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Commvault / Command Center Innovation Release
11.38.0 โค 11.38.25
References
documentation.commvault.com: https://documentation.commvault.com/securityadvisories/CV_2025_04_1.html labs.watchtowr.com: https://labs.watchtowr.com/fire-in-the-hole-were-breaching-the-vault-commvault-remote-code-execution-cve-2025-34028/ github.com: https://github.com/watchtowrlabs/watchTowr-vs-Commvault-PreAuth-RCE-CVE-2025-34028 vulncheck.com: https://www.vulncheck.com/advisories/commvault-command-center-innovation-release-unauthenticated-install-package-path-traversal cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-34028
Credits
Sonny of watchTowr