CVE-2020-5341

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0060%

EPSS Percentile21.15th

PublishedJul 28, 2021

Last ModifiedNov 21, 2024

Vulnerability Description

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system.

Affected Platforms (CPE)

📦

Dell

Emc Avamar Server

= 7.4.1

📦

Dell

Emc Avamar Server

= 7.5.0

📦

Dell

Emc Avamar Server

= 7.5.1

📦

Dell

Emc Avamar Server

= 18.1

📦

Dell

Emc Avamar Server

= 18.2

📦

Dell

Emc Avamar Server

= 19.1

📦

Dell

Emc Avamar Server

= 19.2

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.0

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.1

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.2

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.3

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.4

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.4.1

References & Advisories

🔗 https://www.dell.com/support/security/en-us/details/541677/DSA-2020-057-Dell-EMC-Avamar-Server-Deserialization-of-Untrusted-Data-Vulnerability

Vulnerability Description

Affected Platforms (CPE)

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

References & Advisories

Related Vulnerabilities