Unrated severityNVD Advisory· Published May 15, 2019· Updated Sep 17, 2024
OS command injection vulnerability
CVE-2019-3727
Description
Dell EMC RecoverPoint versions prior to 5.1.3 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an OS command injection vulnerability in the installation feature of Boxmgmt CLI. A malicious boxmgmt user may potentially be able to execute arbitrary commands as root.
Affected products
3<5.2.0.2+ 1 more
- (no CPE)range: <5.2.0.2
- (no CPE)range: unspecified
- Range: <5.1.3
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/108411mitrevdb-entryx_refsource_BID
- www.dell.com/support/security/us/en/04/details/533842/DSA-2019-078-Dell-EMC-RecoverPoint-OS-Command-Injection-Vulnerabilitymitrex_refsource_MISC
News mentions
0No linked articles in our index yet.