CISA Adds CVE-2025-34028 to Known Exploited Vulnerabilities Catalog, Warns of Active Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) has added the vulnerability CVE-2025-34028 to its catalog of known exploited vulnerabilities, indicating that there are active attacks in the wild. This vulnerability affects Commvault, a data management software. Although Commvault has released a patch, a security researcher claims that the vulnerability remains exploitable. The article does not mention specific technical details or the real impacts.