DSA-2019-019: Dell Networking OS10 OS Command Injection Vulnerability
CVE-2018-15778

8.8HIGH

Key Information:

Vendor

Dell
Status
Dell Networking Os10
Vendor
CVE Published:
4 February 2019

What is CVE-2018-15778?

Dell OS10 versions prior to 10.4.2.1 contain a vulnerability caused by lack of proper input validation on the command-line interface (CLI).

Affected Version(s)

Dell Networking OS10 10.4.2.1

References

https://www.dell.com/support/article/sln316095/
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.