VYPR

Commvault

by Commvault

CVEs (1)

  • CVE-2017-18044CriJan 19, 2018
    risk 0.09cvss 9.8epss 0.70

    A Command Injection issue was discovered in ContentStore/Base/CVDataPipe.dll in Commvault before v11 SP6. A certain message parsing function inside the Commvault service does not properly validate the input of an incoming string before passing it to CreateProcess. As a result, a…