CVE-2018-1235

Summary

Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contain a command injection vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to execute arbitrary commands on the affected system with root privilege.

Affected Software

VendorProductVersion RangeStatus
Dell EMCDell EMC RecoverPointunspecified < 5.1.2affected
Dell EMCDell EMC RecoverPoint Virtual Machine (VM)unspecified < 5.1.1.3affected

Weaknesses

  • command injection vulnerability

ADP Enrichment

CVE Program Container

Additional References

References