CVE-2017-8007

Name of the Vulnerable Software and Affected Versions Dell EMC VNX Monitoring and Reporting Scheduler versions (affected versions not specified)

Description The issue concerns a directory traversal vulnerability in the Webservice Gateway of EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs. This vulnerability could allow attackers with Webservice Gateway credentials to access unauthorized information, modify data, or delete data by providing specially crafted strings in input parameters of the web service call.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.