CVE-2018-11067
N/A
N/A
Summary
Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain an open redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links. The vulnerability could be used to conduct phishing attacks that cause users to unknowingly visit malicious sites.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dell EMC | Avamar | 7.2.0 | affected |
| Dell EMC | Avamar | 7.2.1 | affected |
| Dell EMC | Avamar | 7.3.0 | affected |
| Dell EMC | Avamar | 7.3.1 | affected |
| Dell EMC | Avamar | 7.4.0 | affected |
| Dell EMC | Avamar | 7.4.1 | affected |
| Dell EMC | Avamar | 7.5.0 | affected |
| Dell EMC | Avamar | 7.5.1 | affected |
| Dell EMC | Avamar | 18.1 | affected |
| Dell EMC | Integrated Data Protection Appliance | 2.0 | affected |
| Dell EMC | Integrated Data Protection Appliance | 2.1 | affected |
| Dell EMC | Integrated Data Protection Appliance | 2.2 | affected |
Weaknesses
- Open Redirection Vulnerability
ADP Enrichment
CVE Program Container
Additional References
- https://seclists.org/fulldisclosure/2018/Nov/49
- https://www.vmware.com/security/advisories/VMSA-2018-0029.html
- http://www.securityfocus.com/bid/105969
- http://www.securitytracker.com/id/1042153
References
- https://seclists.org/fulldisclosure/2018/Nov/49
- https://www.vmware.com/security/advisories/VMSA-2018-0029.html
- http://www.securityfocus.com/bid/105969
- http://www.securitytracker.com/id/1042153
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.