CVE-2018-15768

Insecure MySQL Configuration Vulnerability

EPSS 9.1%

In short

Dell OpenManage Network Manager versions before 6.5.0 had an insecure MySQL setup that allowed database users to read and write files on the server. This could let attackers access sensitive data or modify system files.

Technical detail

The vulnerability stems from insecure default MySQL configuration in embedded database instances, granting FILE privilege to database users without restriction. An attacker with database access can leverage INTO OUTFILE/LOAD_FILE functionality to exfiltrate sensitive files or inject malicious content into the filesystem, potentially leading to privilege escalation or code execution depending on file permissions.

Summary generated and translated by AI from the official description.

Dell OpenManage Network Manager versions prior to 6.5.0 enabled read/write access to the file system for MySQL users due to insecure default configuration setting for the embedded MySQL database.

Affected products

Dell · OpenManage Network Manager

public PoCs found — 2

cve_referencewww.exploit-db.com/exploits/45852/unverified exploitdbwww.exploit-db.com/exploits/45852unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.dell.com/support/article/us/en/04/sln314610/dell-openmanage-network-manager-security-vulnerabilities https://www.exploit-db.com/exploits/45852/http://www.securityfocus.com/bid/105914