CVE-2019-3723

Summary

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain a web parameter tampering vulnerability. A remote unauthenticated attacker could potentially manipulate parameters of web requests to OMSA to create arbitrary files with empty content or delete the contents of any existing file, due to improper input parameter validation

Affected Software

VendorProductVersion RangeStatus
Dell EMCOpenManage Server Administrator9.1.0.3 < 9.1.0.3affected
Dell EMCOpenManage Server Administrator9.3.0.4 < 9.3.0.4affected

Weaknesses

  • Web Parameter Tampering Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References