Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.2
Cohesity TranZman Migration Appliance 4.0 Build 14614: Command Injection Risk
CVE-2025-63911
Summary
A security weakness in Cohesity's TranZman Migration Appliance 4.0 Build 14614 allows authorized users to execute unauthorized commands. This could potentially lead to data tampering, unauthorized access, or other malicious activity. Update the appliance to the latest version to protect against this risk.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| cohesity | tranzman | 4.0 | – |
Original title
Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injection vulnerability.
Original description
Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injection vulnerability.
nvd CVSS3.1
7.2
Vulnerability type
CWE-78
OS Command Injection
- https://gist.github.com/GregDurys/8b7a3022c04b6cee8c1e1af04f5671b2 Exploit Third Party Advisory
- https://github.com/GregDurys/Cohesity-TranZman-CVEs Third Party Advisory
Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026