Critical Path Traversal Vulnerability in Commvault Command Center

The vulnerability CVE-2025-34028 is a critical flaw (CVSS of 10) that allows an unauthenticated attacker to gain full control of Commvault Command Center 11.38 servers via the upload of a malicious ZIP file. This path traversal vulnerability leads to remote code execution (RCE), endangering the organization's backups. Given the sensitive nature of backup systems, this vulnerability poses a serious risk to the technical security and business continuity of organizations.