CVE-2017-15549

🗓️ 05 Jan 2018 17:00:00Reported by dellType

EMC Avamar Server and NetWorker Virtual Edition and Integrated Data Protection Appliance remote file upload vulnerability

Reporter	Title	Published	Views	Family All 9
CNVD	VMware vSphere Data Protection Arbitrary File Upload Vulnerability	4 Jan 201800:00	–	cnvd
CVE	CVE-2017-15549	5 Jan 201817:00	–	cve
EUVD	EUVD-2017-7001	7 Oct 202500:30	–	euvd
NVD	CVE-2017-15549	5 Jan 201817:29	–	nvd
OSV	CVE-2017-15549	5 Jan 201817:29	–	osv
Prion	Design/Logic Flaw	5 Jan 201817:29	–	prion
ThreatPost	VMware Issues 3 Critical Patches for vSphere Data Protection	2 Jan 201816:03	–	threatpost
VMware	VMSA-2018-0001:vSphere Data Protection (VDP) updates address multiple security issues.	31 Dec 201700:00	–	vmware
Tenable Nessus	VMware vSphere Data Protection 5.x / 6.0.x < 6.0.7 / 6.1.x < 6.1.6 Multiple Vulnerabilities (VMSA-2018-0001	4 Jan 201800:00	–	nessus

[
  {
    "product": "EMC Avamar Server 7.1.x, 7.2.x, 7.3.x, 7.4.x, 7.5.0, EMC NetWorker Virtual Edition (NVE) 9.0.x, 9.1.x, 9.2.x, EMC Integrated Data Protection Appliance 2.0",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "EMC Avamar Server 7.1.x, 7.2.x, 7.3.x, 7.4.x, 7.5.0, EMC NetWorker Virtual Edition (NVE) 9.0.x, 9.1.x, 9.2.x, EMC Integrated Data Protection Appliance 2.0"
      }
    ]
  }
]

Source	Link
seclists	www.seclists.org/fulldisclosure/2018/Jan/17
securityfocus	www.securityfocus.com/bid/102363
securitytracker	www.securitytracker.com/id/1040070

06 Jan 2018 10:57Current

8.8High risk

Vulners AI Score8.8

EPSS0.01295