VYPR
High severity7.3NVD Advisory· Published Jun 19, 2017· Updated Jun 17, 2026

CVE-2017-4987

CVE-2017-4987

Description

In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, a local authenticated user can load a maliciously crafted file in the search path which may potentially allow the attacker to execute arbitrary code on the targeted VNX Control Station system, aka an uncontrolled search path vulnerability.

Affected products

2
  • cpe:2.3:o:emc:vnx1_firmware:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:emc:vnx1_firmware:-:*:*:*:*:*:*:*
    • cpe:2.3:o:emc:vnx2_firmware:-:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.