PT-2019-16665 · Dell Emc · Dell Emc Openmanage System Administrator

Harrison Neal

Publicado

2019-04-25

Atualizado

2023-02-10

CVE-2019-3720

CVSS v3.1

4.9

Média

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0

Description The issue is related to a Directory Traversal Vulnerability due to insufficient sanitization of input parameters. A remote authenticated malicious user with admin privileges could potentially exploit this to gain unauthorized access to the file system.

Recommendations For versions prior to 9.3.0, update to version 9.3.0 or later to resolve the issue.

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2019-3720

Produtos afetados

Dell Emc Openmanage System Administrator

PT-2019-16665 · Dell Emc · Dell Emc Openmanage System Administrator

CVE-2019-3720

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4