CVE-2017-8003

EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high privileged user may potentially exploit this vulnerability to access unauthorized information from the underlying OS server by supplying specially crafted strings in input parameters of the application.
References
Link Resource
http://seclists.org/fulldisclosure/2017/Jul/12 Mailing List Third Party Advisory
http://www.securitytracker.com/id/1038841 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/99487 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:emc:data_protection_advisor:*:*:*:*:*:*:*:*

Information

Published : 2017-07-09 13:29

Updated : 2017-07-17 10:58


NVD link : CVE-2017-8003

Mitre link : CVE-2017-8003


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

emc

  • data_protection_advisor