CVE-2018-1242
N/A
N/A
Summary
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contains a command injection vulnerability in the Boxmgmt CLI. An authenticated malicious user with boxmgmt privileges may potentially exploit this vulnerability to read RPA files. Note that files that require root permission cannot be read.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dell EMC | Dell EMC RecoverPoint | unspecified < 5.1.2 | affected |
| Dell EMC | Dell EMC RecoverPoint Virtual Machine (VM) | unspecified < 5.1.1.3 | affected |
Weaknesses
- command injection vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.