Commvault For Windows
Approved changes feed: RSS · Atom
cpe:2.3:a:commvault:commvault_for_windows:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Commvault (d5a65334-3838-5ae8-8891-4ab1adbfb7b4) |
|---|---|
| Product | Commvault For Windows (4bbb6b48-3315-5045-b21f-d6738200c1bb) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-13976 |
vulnerable | 2026-06-03 14:54:25.802204 |
Commvault 11.20.0 - 11.36.0 Windows Maintenance Installer DLL Injection
A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0, and 11.36.0. During the installation of maintenance updates, an attacker with local access may exploit uncontrolled search path or DLL loading behavior to execute arbitrary code with elevated privileges. The vulnerability has been resolved in versions 11.20.202, 11.28.124, 11.32.65, 11.34.37, and 11.36.15.
Published: 2025-07-25T15:50:17.950Z
Updated: 2025-11-22T12:20:44.890Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.