4 matches found
CVE-2018-1185
The CVE-2018-1185 issue affects EMC RecoverPoint for Virtual Machines and RecoverPoint, with vulnerable versions listed as prior to 5.1.1, 5.1.0.0, and prior to 5.0.1.3. The Admin CLI contains a command injection flaw that could let a user with admin privileges escape the restricted shell and exe...
CVE-2018-1184
CVE-2018-1184 affects EMC RecoverPoint for Virtual Machines (and RecoverPoint for VMs) where the Boxmgmt CLI contains a command-injection vulnerability. The issue allows a malicious user with boxmgmt privileges to bypass the Boxmgmt CLI and execute arbitrary commands with root privileges. Affecte...
CVE-2018-15772
Dell EMC RecoverPoint and RecoverPoint for VMs are affected by CVE-2018-15772: versions prior to 5.1.2.1 (RecoverPoint) and prior to 5.2.0.2 (RecoverPoint for VMs) contain an uncontrolled resource consumption vulnerability. A local boxmgmt user can potentially cause high CPU usage via the Boxmgmt...
CVE-2019-3727
Dell EMC RecoverPoint and RecoverPoint for VMs prior to 5.1.3 and 5.2.0.2, respectively, contain an OS command injection vulnerability in the Boxmgmt CLI installation feature. A local boxmgmt user can potentially execute arbitrary commands as root due to this input handling flaw. The issue is doc...