8 matches found
Quest DR Series Disk Backup Software Command Injection Vulnerability (CNVD-2018-15877)
The Quest DR Series are disk storage and deduplication appliances. A command injection vulnerability exists in the "Email Relay Host Update" method in Quest DR Series Disk Backup Software versions prior to 4.0.3.1. The vulnerability can be exploited to execute commands via the 'hostname' request...
Quest DR Series Disk Backup Software Elevation of Privilege Vulnerability (CNVD-2018-15897)
The Quest DR Series are disk storage and deduplication appliances. An elevation of privilege vulnerability exists in versions of Quest DR Series disk backup software prior to 4.0.3.1. An attacker can exploit this vulnerability to elevate privileges from web server user to root via setsid...
CVE-2018-11180
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 38 of 46...
CVE-2018-11181
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 39 of 46...
CVE-2018-11176
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 34 of 46...
CVE-2018-11166
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 24 of 46...
CVE-2018-11174
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 32 of 46...
CVE-2018-11144
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 2 of 46...