Dell EMC Avamar ADMe Web Interface is affected by a local file inclusion vulnerability which may allow a malicious user to download arbitrary files from the affected system by sending a specially crafted request to the Web Interface application. Versions 1.0.50 and 1.0.51 are affected.
b08560c4e11f44a30c641145b375c2f5Dell EMC IsilonSD Management Server version 1.1.1 contains fixes for two cross site scripting (XSS) security vulnerabilities, which could potentially be exploited by malicious users to compromise the affected system.
926c23acead65bbcb12e6f8d6db13a6eRSA Authentication Manager versions 8.4 and below contain a vulnerability associated with insecure credential management.
2ba0a47253265e7993bea2029c98a3a3RSA Archer versions prior to 6.5 P1 and 6.5 P2 suffer from multiple information exposure vulnerabilities.
79a1317f06a7344455d448abcdf70a83VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudoers, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this vulnerability.
8b2011fd3b0539d810ad80823308b682The Quick Setup component of RSA Authentication Manager versions prior to 8.4 is vulnerable to a relative path traversal vulnerability. A local attacker could potentially provide an administrator with a crafted license that if used during the quick setup deployment of the initial RSA Authentication Manager system, could allow the attacker unauthorized access to that system.
931d37612cf8560f64b71f15da93dbc1RSA Archer versions prior to 6.5.0.1 contain an improper access control vulnerability. A remote malicious user could potentially exploit this vulnerability to bypass authorization checks and gain read access to restricted user information.
7664a0a4edde8d4ac426902578044399Dell EMC Integrated Data Protection Appliance (iDPA) contains undocumented accounts with limited access which may potentially be used by a malicious user to compromise the affected system. Versions affected include Dell EMC Integrated Data Protection Appliance 2.0 and 2.1.
d629671f7460f7e8a6b7d5b2414af86dDell EMC Secure Remote Services Virtual Edition versions prior to 3.32.00.08 suffer from improper file permission, plaintext password storage, and information exposure vulnerabilities.
8f160751ece08d6712da5b33a8d87a36
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed