CVE-2017-3195

Published: Dec 15, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Commvault Edge Communication Service (cvd) prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges.

Vendor	Product	Versions
Commvault	Service Pack 6	affected `Version 11 prior to SP7` affected `version 11 SP6 prior to hotfix 590`

Weaknesses (CWE)

CWE-121

References

http://kb.commvault.com/article/SEC0013

x_refsource_CONFIRM

http://redr2e.com/commvault-edge-cve-2017-3195/

x_refsource_MISC

41823

exploit

x_refsource_EXPLOIT-DB

VU#214283

third-party-advisory

x_refsource_CERT-VN

96941

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-3195

Description

Affected Products

Weaknesses (CWE)

References