Pre-Auth Exploit Chains Found in Commvault Could Enable Remote Code Execution Attacks

Yikes, Commvault just dodged a major bullet. Researchers uncovered pre-auth exploit chains that could've let attackers run remote code execution (RCE) attacks without even logging in. Four vulnerabilities were found and patched before version 11.36.60 dropped.

The most critical one is CVE-2025-57790 with a CVSS score of 8.7—that's high severity, folks. It could allow unauthenticated RCE, meaning hackers could take over systems without any credentials. The other flaws, though less severe, could be chained together for full system compromise.

WatchTowr Labs was behind the discovery, and they've detailed how these bugs interact. Commvault acted fast, releasing patches to mitigate the risks. If you're using Commvault software, update ASAP to avoid getting owned.

This isn't the first time Commvault has faced security issues, but their quick response shows they're on top of it. Stay vigilant, keep your systems updated, and maybe don't ignore those patch notifications—this could've been a nightmare for data backups and enterprise security.