Quest DR Series Disk Backup Software Command Injection Vulnerability (CNVD-2018-15865)
The Quest DR Series are disk storage and deduplication appliances. A command injection vulnerability exists in the 'Logon' method in Quest DR Series Disk Backup Software versions prior to 4.0.3.1. An attacker can exploit this vulnerability to execute arbitrary commands via the 'Password' paramete...