Hello,
I got email about Vulnerability in the JDBC Driver for SQL Server (Microsoft) does its effect commvault sql agent?
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-59250
Solved
vulnerability/CVE-2025-59250
- Novice
Best answer by Pradeep
Hi
This requires a detailed review the CVE was released this month and needs further investigation before any conclusions can be drawn.
We recommend logging a support ticket so the issue can be examined thoroughly by the appropriate teams.
- Vaulter
Hi
Thanks for highlighting the latest CVE identified on SQL Server (CVE-2025-59250).
However, the SQL Server on the CommServe is configured using the ODBC driver, not the JDBC driver.
That said, I would still recommend gathering the below details and opening a support case to confirm there are no dependencies or indirect impact related to CVE-2025-59250:
-
Details of the SQL Server and Commvault version and driver configuration in use.
-
Any third-party or integrated components that may utilize JDBC connectivity.
This will help validate that the CommServe environment is not affected by this vulnerability and we can review and confirm.
- Novice
On the commserver we are using versie 17 of odbc and not jbdc
- Vaulter
- Answer
Hi
This requires a detailed review the CVE was released this month and needs further investigation before any conclusions can be drawn.
We recommend logging a support ticket so the issue can be examined thoroughly by the appropriate teams.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.