← back
CVE-2018-1235

CVE-2018-1235

EPSS 43.3%
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contain a command injection vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to execute arbitrary commands on the affected system with root privilege.
Affected products
Dell EMC · Dell EMC RecoverPointDell EMC · Dell EMC RecoverPoint Virtual Machine (VM)
public PoCs found3
githubgithub.com/AbsoZed/CVE-2018-12350cve_referencewww.exploit-db.com/exploits/44920/unverifiedexploitdbwww.exploit-db.com/exploits/44920unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://seclists.org/fulldisclosure/2018/May/61https://www.exploit-db.com/exploits/44920/http://www.securityfocus.com/bid/104246