Описание
EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high privileged user may potentially exploit this vulnerability to access unauthorized information from the underlying OS server by supplying specially crafted strings in input parameters of the application.
Ссылки
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 6.3 (включая)
cpe:2.3:a:emc:data_protection_advisor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00693
Низкий
4.9 Medium
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 4.9
github
больше 3 лет назад
EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high privileged user may potentially exploit this vulnerability to access unauthorized information from the underlying OS server by supplying specially crafted strings in input parameters of the application.
EPSS
Процентиль: 71%
0.00693
Низкий
4.9 Medium
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-22