Commvault Security Vulnerabilities (CVEs)
Track 8 security vulnerabilities affecting Commvault products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This CVE describes a stored Cross-Site Scripting (XSS) vulnerability in the Report Builder component of WebConsole. Attackers with edit permissions ca...
Jan 7, 2026This CVE describes a path traversal vulnerability that allows remote attackers to access files outside intended directories, potentially leading to re...
Aug 20, 2025This vulnerability allows unauthenticated attackers to execute API calls without credentials in Commvault software, bypassing authentication mechanism...
Aug 20, 2025This vulnerability allows remote attackers to gain administrative control of affected systems by exploiting default credentials during the brief setup...
Aug 20, 2025CVE-2025-3928 is a vulnerability in Commvault Web Server that allows authenticated remote attackers to create and execute webshells, potentially leadi...
Apr 25, 2025CVE-2021-34995 is an authentication bypass vulnerability in Commvault CommCell that allows authenticated attackers to upload arbitrary files and execu...
Jan 13, 2022This vulnerability allows authenticated remote attackers to bypass authentication mechanisms and upload arbitrary files to Commvault CommCell installa...
Jan 13, 2022CVE-2021-34993 is an authentication bypass vulnerability in Commvault CommCell's CVSearchService that allows remote attackers to access the system wit...
Jan 13, 2022Why Monitor Commvault Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 8+ known vulnerabilities affecting Commvault products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Commvault packages in under 60 seconds. No agents required - completely agentless scanning that works across Commvault deployments.
Free vulnerability database: Access detailed information about every Commvault CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Commvault CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
