Multiple Dell EMC Products CVE-2018-1239 Multiple Remote Command Injection Vulnerabilities

by CIRT Team

Description: Multiple Dell EMC Products are prone to multiple remote command-injection vulnerabilities. Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities.

Impact: A remote application admin user could potentially exploit the vulnerabilities to execute arbitrary OS commands as system root on the system where Dell EMC Unity is installed.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference URL’s:

• http://seclists.org/fulldisclosure/2018/May/15
• https://support.emc.com/downloads/39949_Dell-EMC-Unity-Family
• https://www.securityfocus.com/bid/104092/info

CIRT Team

Recommended Posts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

06 Nov 2024 - Security Advisories & Alerts

Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages

08 Oct 2024 - Security Advisories & Alerts

Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh

12 Sep 2024 - Security Advisories & Alerts