PT-2023-20151 · Apache +1 · Apache Tomcat +1

Name of the Vulnerable Software and Affected Versions: Dell NetWorker versions 19.5 and earlier Description: The issue is related to an 'Apache Tomcat' version disclosure vulnerability. A user with remote access to NetWorker clients may potentially exploit this vulnerability and launch...

Dell NetWorker 安全漏洞

Dell NetWorker is an application from Dell USA Inc. It provides discussion forums for Dell Inc. A security vulnerability exists in Dell NetWorker 19.5 and earlier versions, which originated from an "Apache Tomcat" version disclosure, and can be exploited by an attacker to launch a targeted attack...

PT-2023-19686 · Dell · Dell Networker

Name of the Vulnerable Software and Affected Versions: Dell NetWorker versions 19.5 and earlier Description: The issue concerns a 'RabbitMQ' version disclosure vulnerability. A user with remote access to NetWorker clients may potentially exploit this vulnerability and launch target-specific...

Dell EMC NetWorker RCE (DSA-2023-041)

The version of Dell EMC NetWorker installed on the remote Windows host is affected by a remote code execution vulnerability in the NetWorker Client execution service nsrexecd irrespective of any auth used. Note that Nessus has not tested for this issue but has instead relied only on the...

SUSE CVE-2011-0321

librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to 1 register or 2 unregister RPC services, and consequently cause a denial o...

Vulnerability fixed in Dell EMC Networker

Dell has fixed a vulnerability in EMC Networker client. A unauthenticated malicious person could exploit the vulnerability to execute arbitrary code with application privileges. The vulnerability can be exploited when the Networker Client uses the oldauth authentication method. Dell has released...

CVE-2023-24576

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service nsrexecd irrespective of any auth used...

CVE-2023-24576

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service nsrexecd irrespective of any auth used...

Remote code execution

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service nsrexecd irrespective of any auth used...

CVE-2023-24576

CVE-2023-24576 targets Dell EMC NetWorker: a remote, unauthenticated code-execution vulnerability in the NetWorker Client execution service (nsrexecd). The impact is high (Unchanged scope) with potential full compromise of the host; CVSS metrics indicate network access, low complexity, no privile...

CVE-2023-24576

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service nsrexecd irrespective of any auth used...

CVE-2023-24576

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service nsrexecd irrespective of any auth used...

Dell EMC NetWorker 代码注入漏洞

Dell EMC NetWorker is a suite of unified backup and recovery software from Dell USA. The software provides backup and recovery, deduplication elimination, backup reporting, and other features. A code injection vulnerability exists in Dell EMC NetWorker. An unauthenticated, remote attacker can sen...

PT-2023-8986 · Dell Emc · Dell Emc Networker

Name of the Vulnerable Software and Affected Versions: Dell EMC NetWorker affected versions not specified Description: The issue is related to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service nsrexecd. This vulnerability may allow a remote attacker ...

The vulnerability of the AMQP protocol implementation of the message broker RabbitMQ in Dell EMC NetWorker’s backup and disaster recovery systems allows a perpetrator to escalate their privileges.

The vulnerability of the Advanced Message Queuing Protocol AMQP implementation of the message broker RabbitMQ in Dell EMC NetWorker’s backup and disaster recovery systems lies in the transmission of critical information in plaintext. Exploiting this vulnerability could allow an attacker to enhanc...

Dell EMC NetWorker < 19.8 DoS (DSA-2022-350)

The version of Dell EMC NetWorker installed on the remote Windows host is prior to 19.8. It, therefore, contains a version of Spring Framework that is affected by a denial of service DoS vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's...

Dell EMC NetWorker < 19.7.0.2 XSS (DSA-2022-341)

The version of Dell EMC NetWorker installed on the remote Windows host contains an embedded Apache Tomcat instance that is prior 9.0.65. It is, therefore, affected by a cross-site scripting XSS vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the...

Dell EMC NetWorker Privilege Escalation (DSA-2022-194)

The version of Dell EMC NetWorker installed on the remote Windows host is 19.2.1.x, 19.3.x, 19.4.x 19.5.x 19.6.x prior to 19.6.1.2 or 19.7.0.0. It is, therefore, affected by a privilege escalation vulnerability. An authenticated, non-administrative attacker can exploit this vulnerability to gain...

CVE-2022-34368

Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non admin user could exploit this vulnerability and gain access to restricted resources...

CVE-2022-34368

Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non admin user could exploit this vulnerability and gain access to restricted resources...