Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Commvault security patch release for CVE-2025-57788

Security Patch Release
First reported
Last updated
Happening score
H score 25
1 unique sources, 1 articles

Summary

Hide ▲

Commvault released updates for four vulnerabilities in versions before 11.36.60, closing flaws that could be chained into remote code execution on susceptible instances. The patch set includes CVE-2025-57788, CVE-2025-57789, CVE-2025-57790, and CVE-2025-57791. Fixed builds are 11.32.102 and 11.36.60, and the Commvault SaaS solution is not affected.

Related Happenings

SmarterMail security update for CVE-2025-52691

Security Patch Release
First: 30.12.2025 18:28 Last: 30.12.2025 18:28 Sources 1

About this happening: **SmarterTools SmarterMail** received a fix for **CVE-2025-52691**, a **CVSS 10.0** arbitrary-file-upload flaw that could enable **unauthenticated remote code execution** across *...

Open Happening

LangChain Core security patch release (CVE-2025-68664)

Security Patch Release
First: 26.12.2025 11:27 Last: 26.12.2025 11:27 Sources 1

About this happening: **LangChain** released a **security patch** for **langchain-core** that reduces the risk of **secret theft** and **prompt injection** from **CVE-2025-68664**. The fix adds an **al...

Open Happening

HPE OneView CVE-2025-37164 patch release

Security Patch Release
First: 18.12.2025 16:39 Last: 18.12.2025 16:39 Sources 1

About this happening: **Hewlett Packard Enterprise** released **version 11.00** to fix **CVE-2025-37164**, a **CVSS 10.0** flaw in **HPE OneView Software** that could allow **remote code execution**. H...

Open Happening

StylemixThemes security patch release for CVE-2025-64374

Security Patch Release
First: 17.12.2025 18:45 Last: 17.12.2025 18:45 Sources 1

About this happening: **StylemixThemes** released **Motors 5.6.82** on **3 November** to fix **CVE-2025-64374**, closing an **arbitrary file upload** path that could let low-privilege logged-in users t...

Open Happening

FreePBX security patch release for CVE-2025-61675

Security Patch Release
First: 15.12.2025 16:32 Last: 15.12.2025 16:32 Sources 1

About this happening: **FreePBX** released fixes for **multiple security vulnerabilities** affecting its PBX platform, including **SQL injection**, **arbitrary file upload**, and an **authentication by...

Open Happening

Timeline

  1. 21.08.2025 19:38 1 articles · 9mo ago

    Commvault releases fixes for four pre-auth RCE vulnerabilities

    Mitigation Patch Update

    Commvault releases updates for Commvault versions before 11.36.60 to address CVE-2025-57788, CVE-2025-57789, CVE-2025-57790, and CVE-2025-57791, closing paths that could lead to remote code execution on susceptible instances. Fixed builds are 11.32.102 and 11.36.60, and the Commvault SaaS solution is not affected.

    Show sources
    Open in new tab
  2. 21.08.2025 19:38 1 articles · 9mo ago

    Analysis maps two pre-authenticated Commvault exploit chains

    Technical Analysis Update

    Two pre-authenticated exploit chains were identified for susceptible Commvault instances: one combines CVE-2025-57791 with CVE-2025-57790, and the other combines CVE-2025-57788, CVE-2025-57789, and CVE-2025-57790. The second chain succeeds only if the built-in admin password has not been changed since installation.

    Show sources
    Open in new tab