Quest DR Series Disk Backup Software Command Injection Vulnerability (CNVD-2018-15631)
The Quest DR Series are disk storage and deduplication appliances. A command injection vulnerability exists in the "Delete Diagnostics" method in Quest DR Series Disk Backup Software before 4.0.3.1. The vulnerability can be exploited to execute commands via the 'filename' parameter...