Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-5341

Опубликовано: 28 июл. 2021
Источник: nvd
CVSS3: 9.8
CVSS2: 10
EPSS Средний

Описание

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:dell:emc_avamar_server:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:7.5.0:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:7.5.1:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:18.1:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:18.2:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.1:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.2:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.0:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.1:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.2:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.3:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.4:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.4.1:*:*:*:*:*:*:*

EPSS

Процентиль: 94%
0.1271
Средний

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-502
CWE-502

Связанные уязвимости

github логотип

GHSA-wqh9-gr2m-8m6v

github
больше 3 лет назад

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system.

EPSS

Процентиль: 94%
0.1271
Средний

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-502
CWE-502