Commvault security advisory (AV25-531)

Serial number: AV25-531
Date: August 20, 2025

On August 19, 2025, Commvault published security advisories to address vulnerabilities in the following products:

Commvault - versions 11.32.0 to 11.32.101
Commvault - versions 11.36.0 to 11.36.59

Open-source reporting has indicated that proof-of-concept exploit code exists for these vulnerabilities CVE-2025-57788, CVE-2025-57789, CVE-2025-57790 and CVE-2025-57791.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

CV_2025_08_1: Argument Injection Vulnerability in CommServe
CV_2025_08_2: Path Traversal Vulnerability
CV_2025_08_3: Unauthorized API Access Risk
CV_2025_08_4: Vulnerability in Initial Administrator Login Process
Commvault Cloud Security Advisories

Date modified:: 2025-08-20

Language selection

Search

Commvault security advisory (AV25-531)