331 matches found
Dell PowerProtect Data Manager Operating System Command Injection Vulnerability
Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An operating system command injection vulnerability exists in Dell PowerProtect Data Manager version 19.15 an...
Dell PowerProtect Data Manager Authorization Issues Vulnerability (CNVD-2024-09644)
Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.15 and earlier, whic...
CVE-2024-22445
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...
CVE-2024-22454
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain a weak password recovery mechanism for forgotten passwords. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to unauthorized access to the application with privileges of the compromise...
CVE-2024-22445
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...
Design/Logic Flaw
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain a weak password recovery mechanism for forgotten passwords. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to unauthorized access to the application with privileges of the compromise...
Command injection
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...
CVE-2024-22445
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...
CVE-2024-22445
Dell PowerProtect Data Manager (PPDM) versions 19.15 and prior are affected by an OS command-injection vulnerability. The root cause, per PT-2024-2798, is the failure to neutralize special elements used in OS commands, enabling a remote, high-privileged attacker to run arbitrary OS commands on th...
CVE-2024-22454
Dell PowerProtect Data Manager (version 19.15 and earlier) contains a weak password recovery mechanism that allows a remote unauthenticated attacker to retrieve a reset password token and change the password, leading to unauthorized access with the compromised account’s privileges. The issue affe...
Dell PowerProtect Data Manager 授权问题漏洞
Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.15 and earlier, whic...
PT-2024-2581 · Dell · Dell Powerprotect Data Manager
Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager version 19.15 Description: The issue is related to an XML External Entity Injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to information disclosur...
Dell PowerProtect Data Manager 操作系统命令注入漏洞
Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An operating system command injection vulnerability exists in Dell PowerProtect Data Manager version 19.15 an...
PT-2024-2798 · Dell · Dell Powerprotect Data Manager
Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager versions 19.15 and prior Description: The issue is an OS command injection vulnerability that could allow a remote high privileged attacker to execute arbitrary OS commands on the application's underlying OS wit...
CVE-2023-40081
In loadMediaDataInBgForResumption of MediaDataManager.kt, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2023-9118 · Dell · Dell Powerprotect Data Manager Dm5500
Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager DM5500 version 5.14.0.0 Description: The issue exists due to the lack of neutralization of special elements used in an operating system command. A remote attacker with high privileges could potentially exploit...
PT-2023-8731 · Dell · Dell Powerprotect Data Manager Dm5500
Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager DM5500 version 5.14.0.0 Description: The issue is caused by a stack-based buffer overflow in the appliance. An unauthenticated remote attacker may exploit this vulnerability to crash the affected process or...
Dell PowerProtect Data Manager Authorization Issues Vulnerability (CNVD-2024-3761184)
Dell PowerProtect Data Manager PPDM is a data protection solution from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.14 and prior versions, which...
Dell PowerProtect Data Manager 安全漏洞
Dell PowerProtect Data Manager PPDM is a data protection solution from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.14 and prior versions, which...
CVE-2023-5776
The Post Meta Data Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. This is due to missing nonce validation on the pmdmwpajaxdeletemeta, pmdmwpdeleteusermeta, and pmdmwpdeleteusermeta functions. This makes it possible for...