Описание
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain a command execution vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands on the underlying system.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.2.4.15 (исключая)Версия до 9.2.3.6 (исключая)Версия до 9.2.4.26 (исключая)Версия до 9.2.4.26 (исключая)
Одно из
cpe:2.3:a:dell:evasa_provider_virtual_appliance:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:solutions_enabler_virtual_appliance:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:solutions_enabler_virtual_appliance:*:*:*:*:eem:*:*:*
cpe:2.3:a:dell:unisphere_for_powermax_virtual_appliance:*:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.04192
Низкий
8.8 High
CVSS3
Дефекты
CWE-77
CWE-78
Связанные уязвимости
CVSS3: 8.8
github
почти 3 года назад
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain a command execution vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands on the underlying system.
EPSS
Процентиль: 88%
0.04192
Низкий
8.8 High
CVSS3
Дефекты
CWE-77
CWE-78