Описание
Dell EMC Avamar Server versions 18.2, 19.1, 19.2, 19.3, and 19.4 contain an improper privilege management vulnerability in AUI. A malicious user with high privileges could potentially exploit this vulnerability, leading to the disclosure of the AUI info and performing some unauthorized operation on the AUI.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:dell:emc_avamar_server:18.2:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.1:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.2:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.3:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_avamar_server:19.4:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00226
Низкий
6.7 Medium
CVSS3
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-269
CWE-269
Связанные уязвимости
github
около 4 лет назад
Dell EMC Avamar Server versions 18.2, 19.1, 19.2, 19.3, and 19.4 contain an improper privilege management vulnerability in AUI. A malicious user with high privileges could potentially exploit this vulnerability, leading to the disclosure of the AUI info and performing some unauthorized operation on the AUI.
EPSS
Процентиль: 45%
0.00226
Низкий
6.7 Medium
CVSS3
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-269
CWE-269