CVE-2018-1239

2018-05-0300:00:00

dell

www.cve.org

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.1%

JSON

Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities. A remote application admin user could potentially exploit the vulnerabilities to execute arbitrary OS commands as system root on the system where Dell EMC Unity is installed.

CNA Affected

[
  {
    "product": "Unity Operating Environment (OE)",
    "vendor": "Dell EMC",
    "versions": [
      {
        "status": "affected",
        "version": "versions prior to 4.3.0.1522077968"
      }
    ]
  }
]

References

seclists.org/fulldisclosure/2018/May/15

www.securityfocus.com/bid/104092