3 matches found
CVE-2018-11159
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 17 of 46...
CVE-2018-11159
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 17 of 46...
CVE-2018-11159
CVE-2018-11159 (Quest DR Series Disk Backup) Product: Quest DR Series Disk Backup Software (appliances) prior to version 4.0.3.1. Issue: In the JSON-RPC API, the get_storage_group_statistics call accepts a parameter named group that is not sanitized, enabling an attacker to inject system commands...