CVE-2016-8216

6.7MEDIUM

Key Information:

Vendor
Dell
Status
Emc Data Domain Dd Os Emc Data Domain Os (dd Os) 5.4 All Versions, Emc Data Domain Os (dd Os) 5.5 Family All Versions Prior To 5.5.5.0, Emc Data Domain Os (dd Os) 5.6 Family All Versions Prior To 5.6.2.0, Emc Data Domain Os (dd Os) 5.7 Family All Versions Prior To 5.7.2.10
Vendor
CVE Published:
3 February 2017

Summary

EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all versions prior to 5.7.2.10 has a command injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.

Affected Version(s)

EMC Data Domain DD OS EMC Data Domain OS (DD OS) 5.4 all , EMC Data Domain OS (DD OS) 5.5 family all prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all prior to 5.7.2.10 EMC Data Domain DD OS EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all versions prior to 5.7.2.10

References

http://www.securityfocus.com/archive/1/540059/30/0/threaded
x_refsource_CONFIRM
http://www.securitytracker.com/id/1037728
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/95829
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.