Path Traversal Vulnerability in EMC Data Protection Advisor Products
CVE-2016-8211

7.5HIGH

Key Information:

Vendor
Dell
Status
Emc Data Protection Advisor Emc Data Protection Advisor 6.1.x, Emc Data Protection Advisor 6.2, Emc Data Protection Advisor 6.2.1, Emc Data Protection Advisor 6.2.2, Emc Data Protection Advisor 6.2.3 Prior To Patch 446
Vendor
CVE Published:
3 February 2017

Summary

A path traversal vulnerability exists in EMC Data Protection Advisor versions 6.1.x and 6.2.x, which allows unauthorized access to the filesystem. By exploiting this flaw, attackers can manipulate file paths to access sensitive information and potentially execute malicious actions on the affected system, leading to a breach of security protocols and data integrity.

Affected Version(s)

EMC Data Protection Advisor EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 prior to patch 446 EMC Data Protection Advisor EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 prior to patch 446

References

http://www.securityfocus.com/archive/1/540067/30/0/threaded
x_refsource_CONFIRM
http://www.securityfocus.com/bid/95833
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037729
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.