May 5, 2025
about 1 month ago
Two new Rapid Response bulletins and two new software fingerprints.
Rapid Response
The Censys Rapid Response team published information about and queries for the following issues and vulnerabilities.
- SAP NetWeaver Actively Exploited Unauthenticated File Upload Vuln (CVE-2025-31324)
- Critical Pre-Authentication RCE Vulnerability in Commvault Software (CVE-2025-34028)
- Use the following queries to find internet-facing instances of Commvault software. Not all of these are necessarily vulnerable, as specific version information may not be available.
New fingerprints
Added the following fingerprints.
| Type | Name | Description | Query |
|---|---|---|---|
| software | eSSL eTimeTrackLite | This is an eSSL eTimeTrackLite employee time tracking and attendance management system. | Platform query |
| software | Commvault Command Center | This is a Commvault Command Center server. | Platform query |