Medium severity6.7NVD Advisory· Published Feb 3, 2018· Updated Jun 17, 2026
CVE-2018-1184
CVE-2018-1184
Description
An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Boxmgmt CLI may allow a malicious user with boxmgmt privileges to bypass Boxmgmt CLI and run arbitrary commands with root privileges.
Affected products
2- Range: <5.1.1
- Range: <5.0.1.3
Patches
Vulnerability mechanics
References
2- seclists.org/fulldisclosure/2018/Feb/9nvdMailing ListPatchThird Party Advisory
- www.securitytracker.com/id/1040320nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.