Dell OpenManage Network Manager Authentication Bypass (CVE-2018-15768)

An authentication bypass vulnerability exists in Dell OpenManage Network Manager. The vulnerability is due to a misconfiguration in the /etc/sudoers file. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into t...

CVE-2018-15768 Insecure MySQL Configuration Vulnerability

Dell OpenManage Network Manager versions prior to 6.5.0 enabled read/write access to the file system for MySQL users due to insecure default configuration setting for the embedded MySQL database...

CVE-2018-15768

CVE-2018-15768 affects Dell OpenManage Network Manager prior to 6.5.0. The embedded MySQL configuration is insecure, enabling read/write filesystem access for MySQL users and potentially enabling privilege escalation. Affected product: OpenManage Network Manager; root cause: default/misconfigured...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities ''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL:...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-009.txt 1...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

Exploit for linux platform in category web applications ''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL:...

Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation Exploit

Dell OpenManage Network Manager exposes a MySQL listener that can be accessed with default credentials. This MySQL service is running as the root user, so an attacker can exploit this configuration to, e.g., deploy a backdoor and escalate privileges into the root account. Dell OpenManage Network...

CVE-2018-15768

creationtimestamp| type| source ---|---|--- 2018-11-06 15:48:22+00:00| seen| MISP/5be1b74b-6bac-48af-99dd-237e0a021402 2018-11-14 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45852...

Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation

KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-009.txt 1. Vulnerability...

Dell OpenManage Network Manager Multiple Vulnerabilities

Vulnerability Details Affected Vendor: Dell Affected Product: OpenManage Network Manager Affected Version: 6.2.0.51 SP3 Platform: Embedded Linux CWE Classification: CWE-285: Improper Authorization, CWE-284: Improper Access Control Impact: Privilege Escalation Attack vector: MySQL, HTTP CVE ID:...