CVE-2025-63909

High CVSS: 7.2

Incorrect access control in the component /opt/SRLtzm/bin/TapeDumper of Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers to escalate privileges to root and read and write arbitrary files.

Vendor

Cohesity

Product

Tranzman

CWE

CWE-269

Yayın Tarihi

2026-03-03 18:16:23

Güncelleme

2026-03-05 00:35:03

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-269 Tranzman HIGH Cohesity 2026

Referanslar

https://gist.github.com/GregDurys/d402038147e36de5908159d9722072ef https://github.com/GregDurys/Cohesity-TranZman-CVEs

Benzer Kayıtlar

High

CVE-2025-67840

Multiple authenticated OS command injection vulnerabilities exist in the Cohesity (formerly Stone Ram) TranZman 4.0 Buil…

High

CVE-2025-63910

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614 al…

High

CVE-2025-63911

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injecti…

High

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for da…