CyberSec.Space Logo
返回 CVE 浏览器

CVE-2020-5352

HIGH
8.8
CVSS Severity Score
EPSS Score0.1860%
EPSS Percentile31.10th
Published2020年7月6日
Last Modified2024年11月21日

Vulnerability Description

Dell EMC Data Protection Advisor 6.4, 6.5 and 18.1 contain an OS command injection vulnerability. A remote authenticated malicious user may exploit this vulnerability to execute arbitrary commands on the affected system.

Affected Platforms (CPE)

📦
Dell

Emc Data Protection Advisor

= 6.4
📦
Dell

Emc Data Protection Advisor

= 6.5
📦
Dell

Emc Data Protection Advisor

= 18.1

References & Advisories

🔗 https://www.dell.com/support/security/en-us/details/542719/DSA-2020-081-Dell-EMC-Data-Protection-Advisor-OS-Command-Injection-Vulnerability
🔗 https://www.dell.com/support/security/en-us/details/542719/DSA-2020-081-Dell-EMC-Data-Protection-Advisor-OS-Command-Injection-Vulnerability

相关漏洞威胁

CVE-2017-80139.8

EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwo...

CVE-2017-109558.8

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data Protection Advisor 6....

CVE-2017-80028.8

EMC Data Protection Advisor prior to 6.4 contains multiple blind SQL injection vulnerabilities. A remote authenticated attacker ma...

CVE-2018-110488.1

Dell EMC Data Protection Advisor, versions 6.2, 6,3, 6.4, 6.5 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2....