Skip to content

Blog

Stuff I find out. Short notes, quick wins, things worth keeping.

Commvault Vault: Decrypting V5 Blobs with Live JVM Injection

So, CMV stores the db passwords in V5 encrypted blobs. I tried different offline ways to crack these, but all failed. Couldn't find anything relatable on the internet, so I went through some docu and different links. After that, I realized that CMV's runtime already has the V5 key context loaded. That made me look into how to inject the process, not crash the app and decrypt the blobs.

Full source is on GitHub: 0xCZR1/Commvault-JVMInjection.