CVE-2020-5341

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0060%

EPSS Percentile21.15th

Published2021年7月28日

Last Modified2024年11月21日

Vulnerability Description

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system.

Affected Platforms (CPE)

📦

Dell

Emc Avamar Server

= 7.4.1

📦

Dell

Emc Avamar Server

= 7.5.0

📦

Dell

Emc Avamar Server

= 7.5.1

📦

Dell

Emc Avamar Server

= 18.1

📦

Dell

Emc Avamar Server

= 18.2

📦

Dell

Emc Avamar Server

= 19.1

📦

Dell

Emc Avamar Server

= 19.2

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.0

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.1

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.2

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.3

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.4

💻

Dell

Emc Integrated Data Protection Appliance Firmware

= 2.4.1

References & Advisories

🔗 https://www.dell.com/support/security/en-us/details/541677/DSA-2020-057-Dell-EMC-Avamar-Server-Deserialization-of-Untrusted-Data-Vulnerability

Vulnerability Description

Affected Platforms (CPE)

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Avamar Server

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

Emc Integrated Data Protection Appliance Firmware

References & Advisories

関連する脆弱性情報