EMC Unisphere for VMAX 8.x before 8.0.3.4 sets up the Java Debugging Wire Protocol (JDWP) service, which allows remote attackers to execute arbitrary code via unspecified vectors.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CEmc Unisphere
APPEmc8.0.08.0.18.0.28.0.3
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
Powiązane podatności
CVE-2016-6646CRITICAL9.8ten sam produkt
The vApp Managers web application in EMC Unisphere for VMAX Virtual Appliance 8.x before 8.3.0 and Solutions E...
CVE-2016-6645HIGH8.8ten sam produkt
The vApp Managers web application in EMC Unisphere for VMAX Virtual Appliance 8.x before 8.3.0 and Solutions E...
CVE-2018-15764CRITICAL9.8ten sam vendor
Dell EMC ESRS Policy Manager versions 6.8 and prior contain a remote code execution vulnerability due to impro...
CVE-2018-11061CRITICAL9.1ten sam vendor
RSA NetWitness Platform versions prior to 11.1.0.2 and RSA Security Analytics versions prior to 10.6.6 are vul...
CVE-2018-1245CRITICAL9.0ten sam vendor
RSA Identity Lifecycle and Governance versions 7.0.1, 7.0.2 and 7.1.0 contains an authorization bypass vulnera...