CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
22.9%
Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. A remote malicious user with high privileges could potentially exploit this vulnerability leading to the execution of arbitrary OS commands on the affected system.
Vendor | Product | Version | CPE |
---|---|---|---|
dell | solutions_enabler_virtual_appliance | * | cpe:2.3:a:dell:solutions_enabler_virtual_appliance:*:*:*:*:*:*:*:* |
dell | unisphere_for_powermax_virtual_appliance | * | cpe:2.3:a:dell:unisphere_for_powermax_virtual_appliance:*:*:*:*:*:*:*:* |
dell | powermax_os | 5978 | cpe:2.3:o:dell:powermax_os:5978:*:*:*:eem:*:*:* |