5 matches found
EUVD-2017-14098
Malware in sbrugna...
CVE-2019-3704
VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudores, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this...
CVE-2019-3704
The CVE-2019-3704 entry describes an OS command injection vulnerability in Dell EMC VNX2 OE for File, affecting the VNX Control Station prior to 8.1.9.236. The issue arises from inadequate restriction in sudores, allowing a local authenticated attacker to execute arbitrary OS commands as root. Th...
Cross site scripting
In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impacted by a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could...
EMC VNX1 / VNX2 Family Cross Site Scripting Vulnerability
A fix is available for certain versions of VNX Control Station for VNX1 and VNX2 that contain a reflected cross site scripting vulnerability. This vulnerability could potentially be exploited by malicious users to compromise the affected system. Affected includes Dell EMC VNX2 versions prior to...