CRITICAL🇵🇱 Wersja polska

CVE-2020-5341

CVSS 9.8v3.1pub. 2021-07-28upd. 2024-11-21

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dell Emc Avamar Server

    APP
    Dell
    18.118.219.119.27.4.17.5.07.5.1
  • Dell Emc Integrated Data Protection Appliance Firmware

    OS
    Dell
    2.02.12.22.32.42.4.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassDeserialization
CWE
References

Related vulnerabilities

CVE-2020-29493CRITICAL10.0ten sam produkt

DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a SQL Injection Vulnerability in Fitness Analyzer. ...

CVE-2020-29495CRITICAL10.0ten sam produkt

DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness An...

CVE-2019-3752HIGH8.2ten sam produkt

Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2 and 19.1 and Dell EMC Integrated Data Protection App...

CVE-2021-21511HIGH8.1ten sam produkt

Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. ...

CVE-2020-29494HIGH8.7ten sam produkt

Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM. A remote use...