CVE-2019-3704

2019-02-07T19:29:00
ID CVE-2019-3704
Type cve
Reporter cve@mitre.org
Modified 2019-10-09T23:49:00

Description

VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudores, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this vulnerability.