Описание
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_acldb_dump utility. An authenticated attacker could potentially exploit this vulnerability, leading to execution of arbitrary operating system commands with root privileges.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.4.0.0.5.094 (исключая)
cpe:2.3:a:dell:unity_operating_environment:*:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00291
Низкий
7.8 High
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
CVSS3: 7.8
github
почти 2 года назад
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_acldb_dump utility. An authenticated attacker could potentially exploit this vulnerability, leading to execution of arbitrary operating system commands with root privileges.
EPSS
Процентиль: 52%
0.00291
Низкий
7.8 High
CVSS3
Дефекты
CWE-78
CWE-78