CVE-2017-3195 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2017-3195

Commvault Edge Communication Service (cvd) prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges.

Published: Dec 16, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-3195
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
commvault / edge	11.0.0	11.0.0.x
commvault / edge	11.0.0-service_pack1	11.0.0-service_pack1.x
commvault / edge	11.0.0-service_pack2	11.0.0-service_pack2.x
commvault / edge	11.0.0-service_pack3	11.0.0-service_pack3.x
commvault / edge	11.0.0-service_pack4	11.0.0-service_pack4.x
commvault / edge	11.0.0-service_pack5	11.0.0-service_pack5.x
commvault / edge	11.0.0-service_pack6	11.0.0-service_pack6.x