Back to search
CVE-2018-1242
Published: May 29, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contains a command injection vulnerability in the Boxmgmt CLI. An authenticated malicious user with boxmgmt privileges may potentially exploit this vulnerability to read RPA files. Note that files that require root permission cannot be read.
| Vendor | Product | Versions |
|---|---|---|
Dell EMC | Dell EMC RecoverPoint | affected unspecified - < 5.1.2 |
Dell EMC | Dell EMC RecoverPoint Virtual Machine (VM) | affected unspecified - < 5.1.1.3 |
References
20180522 DSA-2018-095: Dell EMC RecoverPoint Multiple Vulnerabilities
mailing-list
x_refsource_FULLDISC
104246
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now