Enterprise data backup solution Commvault has disclosed that an unidentified nation-state adversary infiltrated its Microsoft Azure environment by leveraging CVE-2025-3928, yet stressed that there is no indication of unauthorized data access.
“This incident has impacted a limited number of clients we share with Microsoft, and we are collaborating with those clients to offer support,” the organization stated.