CVE-2017-8003

Sažetak

EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high privileged user may potentially exploit this vulnerability to access unauthorized information from the underlying OS server by supplying specially crafted strings in input parameters of the application.

Reference

http://seclists.org/fulldisclosure/2017/Jul/12
http://www.securityfocus.com/bid/99487
http://www.securitytracker.com/id/1038841

CVSS

Base:	6.8
Impact:	6.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:C/I:N/A:N

Zadnje važnije ažuriranje

17-07-2017 - 17:58

Objavljeno

09-07-2017 - 20:29