CVE-2019-18582

🗓️ 18 Mar 2020 18:20:15Reported by dellType

Dell EMC DPA versions 6.3-6.5, 18.2<83, 19.1<71 have server-side template injection vulnerability in REST API

Reporter	Title	Published	Views	Family All 5
CNVD	Dell EMC Data Protection Advisor Code Injection Vulnerability	19 Mar 202000:00	–	cnvd
Cvelist	CVE-2019-18582	18 Mar 202018:20	–	cvelist
EUVD	EUVD-2019-8329	7 Oct 202500:30	–	euvd
NVD	CVE-2019-18582	18 Mar 202019:15	–	nvd
Prion	Sql injection	18 Mar 202019:15	–	prion

NVD

Vulners

Node

dell emc_data_protection_advisorMatch6.3

dell emc_data_protection_advisorMatch6.4

dell emc_data_protection_advisorMatch6.5

dell emc_data_protection_advisorMatch18.1

dell emc_data_protection_advisorMatch18.2-

dell emc_data_protection_advisorMatch19.1-

Node

dell emc_integrated_data_protection_appliance_firmwareMatch2.0

dell emc_integrated_data_protection_appliance_firmwareMatch2.1

dell emc_integrated_data_protection_appliance_firmwareMatch2.2

dell emc_integrated_data_protection_appliance_firmwareMatch2.3

dell emc_integrated_data_protection_appliance_firmwareMatch2.4

AND

dell emc_idpa_dp4400Match-

dell emc_idpa_dp5800Match-

dell emc_idpa_dp8300Match-

dell emc_idpa_dp8800Match-

[
  {
    "product": "Data Protection Advisor",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "6.3, 6.4, 6.5 and version prior to 18.2 patch 83 and prior to 19.1 patch 71",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
dell	www.dell.com/support/security/en-us/details/539430/DSA-2019-155-Dell-EMC-Data-Protection-Advisor-Security-Update-for-Multiple-Vulnerabilities

21 Nov 2024 04:33Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.2

CVSS 29

CVSS 39.1

EPSS0.02386

CWE-94