{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2024-13976", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2025-07-23T20:30:07.057Z", "datePublished": "2025-07-25T15:50:17.950Z", "dateUpdated": "2025-11-22T12:20:44.890Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["Windows Maintenance Release Installer"], "platforms": ["Windows"], "product": "Commvault for Windows", "vendor": "Commvault", "versions": [{"lessThan": "11.20.202", "status": "affected", "version": "11.20.0", "versionType": "semver"}, {"lessThan": "11.28.124", "status": "affected", "version": "11.28.0", "versionType": "semver"}, {"lessThan": "11.32.65", "status": "affected", "version": "11.32.0", "versionType": "semver"}, {"lessThan": "11.34.37", "status": "affected", "version": "11.34.0", "versionType": "semver"}, {"lessThan": "11.36.15", "status": "affected", "version": "11.36.0", "versionType": "semver"}]}], "cpeApplicability": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "versionEndExcluding": "11.20.202", "versionStartIncluding": "11.20.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "versionEndExcluding": "11.28.124", "versionStartIncluding": "11.28.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "versionEndExcluding": "11.32.65", "versionStartIncluding": "11.32.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "versionEndExcluding": "11.34.37", "versionStartIncluding": "11.34.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "versionEndExcluding": "11.36.15", "versionStartIncluding": "11.36.0", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "OR"}], "credits": [{"lang": "en", "type": "finder", "value": "Commvault"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0, and 11.36.0. During the installation of maintenance updates, an attacker with local access may exploit uncontrolled search path or DLL loading behavior to execute arbitrary code with elevated privileges.&nbsp;The vulnerability has been resolved in versions 11.20.202, 11.28.124, 11.32.65, 11.34.37, and 11.36.15.</p>"}], "value": "A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0, and 11.36.0. During the installation of maintenance updates, an attacker with local access may exploit uncontrolled search path or DLL loading behavior to execute arbitrary code with elevated privileges.\u00a0The vulnerability has been resolved in versions 11.20.202, 11.28.124, 11.32.65, 11.34.37, and 11.36.15."}], "impacts": [{"capecId": "CAPEC-641", "descriptions": [{"lang": "en", "value": "CAPEC-641 DLL Side-Loading"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 8.5, "baseSeverity": "HIGH", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-427", "description": "CWE-427 Uncontrolled Search Path Element", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2025-11-22T12:20:44.890Z"}, "references": [{"tags": ["vendor-advisory", "patch"], "url": "https://documentation.commvault.com/securityadvisories/CV_2024_09_2.html"}, {"tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/commvault-for-windows-maintenance-installer-dll-injection"}], "source": {"discovery": "UNKNOWN"}, "title": "Commvault 11.20.0 - 11.36.0 Windows Maintenance Installer DLL Injection", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-25T17:48:27.935953Z", "id": "CVE-2024-13976", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-25T17:49:35.606Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-13976", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-07-25T17:48:27.935953Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-25T17:49:30.981Z"}}], "cna": {"title": "Commvault 11.20.0 - 11.36.0 Windows Maintenance Installer DLL Injection", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Commvault"}], "impacts": [{"capecId": "CAPEC-641", "descriptions": [{"lang": "en", "value": "CAPEC-641 DLL Side-Loading"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.5, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Commvault", "modules": ["Windows Maintenance Release Installer"], "product": "Commvault for Windows", "versions": [{"status": "affected", "version": "11.20.0", "lessThan": "11.20.202", "versionType": "semver"}, {"status": "affected", "version": "11.28.0", "lessThan": "11.28.124", "versionType": "semver"}, {"status": "affected", "version": "11.32.0", "lessThan": "11.32.65", "versionType": "semver"}, {"status": "affected", "version": "11.34.0", "lessThan": "11.34.37", "versionType": "semver"}, {"status": "affected", "version": "11.36.0", "lessThan": "11.36.15", "versionType": "semver"}], "platforms": ["Windows"], "defaultStatus": "unaffected"}], "references": [{"url": "https://documentation.commvault.com/securityadvisories/CV_2024_09_2.html", "tags": ["vendor-advisory", "patch"]}, {"url": "https://www.vulncheck.com/advisories/commvault-for-windows-maintenance-installer-dll-injection", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0, and 11.36.0. During the installation of maintenance updates, an attacker with local access may exploit uncontrolled search path or DLL loading behavior to execute arbitrary code with elevated privileges.\u00a0The vulnerability has been resolved in versions 11.20.202, 11.28.124, 11.32.65, 11.34.37, and 11.36.15.", "supportingMedia": [{"type": "text/html", "value": "<p>A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0, and 11.36.0. During the installation of maintenance updates, an attacker with local access may exploit uncontrolled search path or DLL loading behavior to execute arbitrary code with elevated privileges.&nbsp;The vulnerability has been resolved in versions 11.20.202, 11.28.124, 11.32.65, 11.34.37, and 11.36.15.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-427", "description": "CWE-427 Uncontrolled Search Path Element"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "11.20.202", "versionStartIncluding": "11.20.0"}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "11.28.124", "versionStartIncluding": "11.28.0"}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "11.32.65", "versionStartIncluding": "11.32.0"}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "11.34.37", "versionStartIncluding": "11.34.0"}, {"criteria": "cpe:2.3:a:commvault:commvault:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "11.36.15", "versionStartIncluding": "11.36.0"}], "operator": "OR"}], "operator": "OR"}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2025-11-22T12:20:44.890Z"}}}, "cveMetadata": {"cveId": "CVE-2024-13976", "state": "PUBLISHED", "dateUpdated": "2025-11-22T12:20:44.890Z", "dateReserved": "2025-07-23T20:30:07.057Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2025-07-25T15:50:17.950Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0, and 11.36.0. During the installation of maintenance updates, an attacker with local access may exploit uncontrolled search path or DLL loading behavior to execute arbitrary code with elevated privileges.\u00a0The vulnerability has been resolved in versions 11.20.202, 11.28.124, 11.32.65, 11.34.37, and 11.36.15."}, {"lang": "es", "value": "Existe una vulnerabilidad de inyecci\u00f3n de DLL en Commvault para Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0 y 11.36.0. Durante la instalaci\u00f3n de actualizaciones de mantenimiento, un atacante con acceso local podr\u00eda aprovechar una ruta de b\u00fasqueda no controlada o un comportamiento de carga de DLL para ejecutar c\u00f3digo arbitrario con privilegios elevados. La vulnerabilidad se ha resuelto en las versiones 11.20.202, 11.28.124, 11.32.65, 11.34.37 y 11.36.15."}], "id": "CVE-2024-13976", "lastModified": "2025-07-29T14:14:55.157", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.5, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2025-07-25T16:15:27.690", "references": [{"source": "disclosure@vulncheck.com", "url": "https://documentation.commvault.com/securityadvisories/CV_2024_09_2.html"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/commvault-for-windows-maintenance-installer-dll-injection"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-427"}], "source": "disclosure@vulncheck.com", "type": "Secondary"}]}

{}

{}