Bao7Uo

**Name of the Vulnerable Software and Affected Versions** Progress Telerik UI for ASP.NET AJAX versions prior to 2020.1.114 **Description** The issue concerns the deserialization of untrusted data, allowing for remote code execution. This has been exploited by multiple threat actors, including a nation-state group, to breach a U.S. federal agency's web server. The estimated number of potentially affected devices worldwide is not specified. Technical details include the exploitation of insecure deserialization in Telerik UI. API endpoints and specific variables are not explicitly mentioned. **Recommendations** As a temporary workaround, consider disabling the deserialization of untrusted data in Progress Telerik UI for ASP.NET AJAX until a patch is available. Restrict access to vulnerable components to minimize the risk of exploitation. For versions prior to 2020.1.114, update to version 2020.1.114 or later to resolve the issue. At the moment, there is no information about additional mitigation measures.

**Name of the Vulnerable Software and Affected Versions** Dell EMC RecoverPoint versions prior to 5.1.2.1 Dell EMC RecoverPoint for VMs versions prior to 5.2.0.2 **Description** The issue allows a malicious `boxmgmt` user to potentially determine the existence of any system file via `Boxmgmt CLI`. This is an information disclosure issue. **Recommendations** For Dell EMC RecoverPoint versions prior to 5.1.2.1, update to version 5.1.2.1 or later. For Dell EMC RecoverPoint for VMs versions prior to 5.2.0.2, update to version 5.2.0.2 or later.

**Name of the Vulnerable Software and Affected Versions** Dell EMC RecoverPoint versions prior to 5.1.2.1 Dell EMC RecoverPoint for VMs versions prior to 5.2.0.2 **Description** The issue allows a malicious `boxmgmt` user to potentially consume a large amount of CPU bandwidth, making the system slow. It may also enable the determination of the existence of any system file via `Boxmgmt CLI`. **Recommendations** For Dell EMC RecoverPoint versions prior to 5.1.2.1, update to version 5.1.2.1 or later. For Dell EMC RecoverPoint for VMs versions prior to 5.2.0.2, update to version 5.2.0.2 or later.

**Name of the Vulnerable Software and Affected Versions** Dell EMC RecoverPoint versions prior to 5.1.2 Dell EMC RecoverPoint for VMs versions prior to 5.1.1.3 **Description** The issue may cause an LDAP password to be leaked in plain-text into the log file under certain conditions. An authenticated malicious user with access to the log files may obtain the exposed password for use in further attacks. **Recommendations** For Dell EMC RecoverPoint versions prior to 5.1.2, update to version 5.1.2 or later to resolve the issue. For Dell EMC RecoverPoint for VMs versions prior to 5.1.1.3, update to version 5.1.1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the RecoverPoint log files to minimize the risk of exploitation.