Broadcom Emulex HBA Manager (formerly known as OneCommand Manager) provides centralized management of Emulex HBAs in physical and virtual server deployments through a graphical user interface (GUI) and a fully scriptable command line user interface (CLI). Manager versions prior to 11.4.425.0, 12.8.542.31 are vulnerable to arbitrary file retrieval if not installed in “strict local management” mode. An attacker could use the GetDumpFile command to retrieve arbitrary files from a remote host.
CPE | Name | Operator | Version |
---|---|---|---|
Broadcom Emulex HBA Manager <11. | eq | 4.425.0 | |
Broadcom Emulex HBA Manager <12. | eq | 8.542.31 |