A high-severity vulnerability in Commvault’s Web Server (CVE-2025-3928) is now being actively exploited in the wild. The flaw allows authenticated attackers to remotely plant web shells and execute malicious code on both Windows and Linux systems. While the exploit requires valid credentials, successful attacks can lead to full system compromise, making it critical for organizations to patch immediately and review access controls.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox