3 matches found
CVE-2017-15549
CVE-2017-15549 describes an arbitrary file upload vulnerability. A remote authenticated malicious user with low privileges could upload arbitrary files to any location on the server filesystem in affected VMware vSphere Data Protection (VDP) deployments, including VDP 5.x, 6.0.x, and 6.1.x. Affec...
CVE-2017-15550
CVE-2017-15550 is a path-traversal vulnerability in VMware vSphere Data Protection (VDP). A remote authenticated malicious user with low privileges could access arbitrary files on the server filesystem within the vulnerable VDP application. Affected product versions include VDP 5.x, 6.0.x, and 6....
CVE-2017-15548
CVE-2017-15548 affects EMC/VDP solutions: vSphere Data Protection (VDP) on VMware appliances 5.x, 6.0.x, 6.1.x with an authentication bypass vulnerability that could allow a remote unauthenticated attacker to gain unauthorized root access. Related issues CVE-2017-15549 (arbitrary file upload) and...