exploitDog

CVE-2024-0168

Опубликовано: 12 фев. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Dell Unity, versions prior to 5.4, contains a Command Injection Vulnerability in svc_oscheck utility. An authenticated attacker could potentially exploit this vulnerability, leading to the ability to inject arbitrary operating system commands. This vulnerability allows an authenticated attacker to execute commands with root privileges.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:unity_operating_environment:*:*:*:*:*:*:*:*

Версия до 5.4.0.0.5.094 (исключая)

EPSS

Процентиль: 46%

0.00233

Низкий

7.8 High

CVSS3

Дефекты

CWE-78

CWE-78

Связанные уязвимости

GHSA-j87v-2fwm-cxch

CVSS3: 7.8

github

почти 2 года назад

Dell Unity, versions prior to 5.4, contains a Command Injection Vulnerability in svc_oscheck utility. An authenticated attacker could potentially exploit this vulnerability, leading to the ability to inject arbitrary operating system commands. This vulnerability allows an authenticated attacker to execute commands with root privileges.

BDU:2024-03064

CVSS3: 7.8

fstec

почти 2 года назад

Уязвимость утилиты svc_oscheck микропрограммного обеспечения систем хранения данных Dell Unity, позволяющая нарушителю выполнять команды с привилегиями root

EPSS

Процентиль: 46%

0.00233

Низкий

7.8 High

CVSS3

Дефекты

CWE-78

CWE-78