← volver
CVE-2018-1185

CVE-2018-1185

EPSS 6.3%
An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Admin CLI may allow a malicious user with admin privileges to escape from the restricted shell to an interactive shell and run arbitrary commands with root privileges.
Productos afectados
n/a · EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3
PoCs públicas encontradas2
cve_referencewww.exploit-db.com/exploits/44614/no verificadoexploitdbwww.exploit-db.com/exploits/44614no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2018/Feb/9https://www.exploit-db.com/exploits/44614/http://www.securitytracker.com/id/1040320