Critical severity9.8NVD Advisory· Published Jun 19, 2017· Updated Jun 17, 2026
CVE-2017-4984
CVE-2017-4984
Description
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, an unauthenticated remote attacker may be able to elevate their permissions to root through a command injection. This may potentially be exploited by an attacker to run arbitrary code with root-level privileges on the targeted VNX Control Station system, aka remote code execution.
Affected products
2cpe:2.3:o:emc:vnx1_firmware:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:emc:vnx1_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:emc:vnx2_firmware:-:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/archive/1/540738/30/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/99039nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.