2 matches found
CVE-2018-11162
Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection issue 20 of 46...
CVE-2018-11162
CVE-2018-11162 corresponds to a command-injection vulnerability in Quest DR Series Disk Backup Software prior to 4.0.3.1. The CoreLabs advisory documents a remote, authenticated issue in DRStorageGroup.update where unsanitized input in newGroup (e.g., Name, Compression_mode) is used to build a co...