{"uuid": "e04f5bbd-ac56-4f31-944d-448b47052737", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3928", "type": "exploited", "source": "https://t.me/thehackernews/6882", "content": "\ud83d\udea8 New CISA Alert: Hackers exploited CVE-2025-3928 in Commvault\u2019s Metallic SaaS, compromising M365 credentials.\n\nThis isn\u2019t an isolated case\u2014it\u2019s part of a broader campaign targeting SaaS apps with default configs and excessive permissions.\n\n\ud83d\udd0d Details: https://thehackernews.com/2025/05/cisa-warns-of-suspected-broader-saas.html", "creation_timestamp": "2025-05-23T07:45:33.000000Z"}