Dell EMC Avamar ADMe Web Interface is affected by a local file inclusion vulnerability which may allow a malicious user to download arbitrary files from the affected system by sending a specially crafted request to the Web Interface application. Versions 1.0.50 and 1.0.51 are affected.
7acfa0ed5a7472704419b66813b778ef436398a2db8ae457ca89f746c7f72462Dell EMC IsilonSD Management Server version 1.1.1 contains fixes for two cross site scripting (XSS) security vulnerabilities, which could potentially be exploited by malicious users to compromise the affected system.
ea9700de214b1f06e9cf2cca030f0fb03efd55b6a13f59c0dea8bc4fcf79cd46RSA Authentication Manager versions 8.4 and below contain a vulnerability associated with insecure credential management.
10392bbec4e4eb20c5429545b5392cb25246473b65e6017b379f4dd3ade1514cRSA Archer versions prior to 6.5 P1 and 6.5 P2 suffer from multiple information exposure vulnerabilities.
3d0114b75d81c117be647742a68a503ccff69487f8773fd054c5605456c53ddaVNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudoers, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this vulnerability.
8b5e1fd9a35d270ca6343964f334e12ca3745a32f7221231dcc6a0b1feb3acafThe Quick Setup component of RSA Authentication Manager versions prior to 8.4 is vulnerable to a relative path traversal vulnerability. A local attacker could potentially provide an administrator with a crafted license that if used during the quick setup deployment of the initial RSA Authentication Manager system, could allow the attacker unauthorized access to that system.
31eb5b4af089eeb2959522b4f783e63cd01a93916d91d8b697f658e3ada5eb0eRSA Archer versions prior to 6.5.0.1 contain an improper access control vulnerability. A remote malicious user could potentially exploit this vulnerability to bypass authorization checks and gain read access to restricted user information.
333aa2865f86565a4167e421f942783dcaaa3ab27d3711f02029c0078efdda61Dell EMC Integrated Data Protection Appliance (iDPA) contains undocumented accounts with limited access which may potentially be used by a malicious user to compromise the affected system. Versions affected include Dell EMC Integrated Data Protection Appliance 2.0 and 2.1.
ee7b725ac965aa8191ebda5c2a860b0e21c5dcb9b035ac2313c7fa81258bf185Dell EMC Secure Remote Services Virtual Edition versions prior to 3.32.00.08 suffer from improper file permission, plaintext password storage, and information exposure vulnerabilities.
84264bc2bf7265926ed83dcdaa2077e007732aa634829e2bdaf8b2daba109bbc
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed