Quest DR Series Disk Backup Software Command Injection Vulnerability (CNVD-2018-15883)
The Quest DR Series are disk storage and deduplication appliances. A command injection vulnerability exists in the "Generate Diagnostics" method in Quest DR Series disk backup software versions prior to 4.0.3.1. The vulnerability can be exploited to execute arbitrary system commands via a special...