Lucene search

K
DellEmc Integrated Data Protection Appliance Firmware2.2

6 matches found

CVE
CVE
added 2019/09/27 9:15 p.m.203 views

CVE-2019-3747

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a stored cross-site scripting vulnerability. A remote malicious ACM admin user may potentially exploit this vulnerability to store malicious HTML or JavaScript code in Cloud DR add-on specific field. When victim users acces...

8.4CVSS4.7AI score0.00452EPSS
CVE
CVE
added 2019/09/27 9:15 p.m.196 views

CVE-2019-3736

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a password storage vulnerability in the ACM component. A remote authenticated malicious user with root privileges may potentially use a support tool to decrypt encrypted passwords stored locally on the system to use it to a...

8.2CVSS6.6AI score0.00076EPSS
CVE
CVE
added 2019/09/27 9:15 p.m.194 views

CVE-2019-3746

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 do not limit the number of authentication attempts to the ACM API. An authenticated remote user may exploit this vulnerability to launch a brute-force authentication attack in order to gain access to the system.

9.8CVSS8.6AI score0.00992EPSS
CVE
CVE
added 2020/03/18 7:15 p.m.54 views

CVE-2019-18582

Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server-side template injection vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially exploit this vul...

9.1CVSS6.8AI score0.02386EPSS
CVE
CVE
added 2020/03/18 7:15 p.m.53 views

CVE-2019-18581

Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server missing authorization vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially exploit this vulne...

9.1CVSS6.9AI score0.02202EPSS
CVE
CVE
added 2021/07/28 12:15 a.m.48 views

CVE-2020-5341

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated a...

10CVSS9.3AI score0.1271EPSS