Описание
Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain unauthorized read or modification access to other users' backup data.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:dell:emc_avamar_server:19.3:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.4:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_integrated_data_protection_appliance:2.6:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00152
Низкий
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-285
NVD-CWE-Other
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain unauthorized read or modification access to other users' backup data.
EPSS
Процентиль: 36%
0.00152
Низкий
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-285
NVD-CWE-Other