← voltar
CVE-2018-1185

CVE-2018-1185

EPSS 6.3%
An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Admin CLI may allow a malicious user with admin privileges to escape from the restricted shell to an interactive shell and run arbitrary commands with root privileges.
Produtos afetados
n/a · EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3
PoCs públicas encontradas2
cve_referencewww.exploit-db.com/exploits/44614/não verificadoexploitdbwww.exploit-db.com/exploits/44614não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://seclists.org/fulldisclosure/2018/Feb/9https://www.exploit-db.com/exploits/44614/http://www.securitytracker.com/id/1040320