Unrated severityNVD Advisory· Published Feb 7, 2019· Updated Sep 16, 2024
CVE-2019-3704
CVE-2019-3704
Description
VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudores, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this vulnerability.
Affected products
2- Range: <8.1.9.236
- Dell EMC/VNX Control Station in Dell EMC VNX2 OE for Filev5Range: unspecified
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/106954mitrevdb-entryx_refsource_BID
- seclists.org/fulldisclosure/2019/Feb/8mitremailing-listx_refsource_FULLDISC
News mentions
0No linked articles in our index yet.