CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11077

'getlogs' utility in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1 and 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 is affected by an OS command injection vulnerability. A malicious Avamar admin user may potentially be able to execute arbitrary commands under root privilege.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.1%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 7.2

References

Products affected by CVE-2018-11077

Dell » Emc Avamar » Version: 18.1

cpe:2.3:a:dell:emc_avamar:18.1
Dell » Emc Avamar » Version: 7.2.0

cpe:2.3:a:dell:emc_avamar:7.2.0
Dell » Emc Avamar » Version: 7.2.1

cpe:2.3:a:dell:emc_avamar:7.2.1
Dell » Emc Avamar » Version: 7.3.0

cpe:2.3:a:dell:emc_avamar:7.3.0
Dell » Emc Avamar » Version: 7.3.1

cpe:2.3:a:dell:emc_avamar:7.3.1
Dell » Emc Avamar » Version: 7.4.0

cpe:2.3:a:dell:emc_avamar:7.4.0
Dell » Emc Avamar » Version: 7.4.1

cpe:2.3:a:dell:emc_avamar:7.4.1
Dell » Emc Avamar » Version: 7.5.0

cpe:2.3:a:dell:emc_avamar:7.5.0
Dell » Emc Avamar » Version: 7.5.1

cpe:2.3:a:dell:emc_avamar:7.5.1
Dell » Emc Integrated Data Protection Appliance » Version: 2.0

cpe:2.3:a:dell:emc_integrated_data_protection_appliance:2.0
Dell » Emc Integrated Data Protection Appliance » Version: 2.1

cpe:2.3:a:dell:emc_integrated_data_protection_appliance:2.1
Dell » Emc Integrated Data Protection Appliance » Version: 2.2

cpe:2.3:a:dell:emc_integrated_data_protection_appliance:2.2
Vmware » Vsphere Data Protection » Version: 6.0.0

cpe:2.3:a:vmware:vsphere_data_protection:6.0.0
Vmware » Vsphere Data Protection » Version: 6.0.1

cpe:2.3:a:vmware:vsphere_data_protection:6.0.1
Vmware » Vsphere Data Protection » Version: 6.0.2

cpe:2.3:a:vmware:vsphere_data_protection:6.0.2
Vmware » Vsphere Data Protection » Version: 6.0.3

cpe:2.3:a:vmware:vsphere_data_protection:6.0.3
Vmware » Vsphere Data Protection » Version: 6.0.4

cpe:2.3:a:vmware:vsphere_data_protection:6.0.4
Vmware » Vsphere Data Protection » Version: 6.0.5

cpe:2.3:a:vmware:vsphere_data_protection:6.0.5
Vmware » Vsphere Data Protection » Version: 6.0.6

cpe:2.3:a:vmware:vsphere_data_protection:6.0.6
Vmware » Vsphere Data Protection » Version: 6.0.7

cpe:2.3:a:vmware:vsphere_data_protection:6.0.7
Vmware » Vsphere Data Protection » Version: 6.0.8

cpe:2.3:a:vmware:vsphere_data_protection:6.0.8
Vmware » Vsphere Data Protection » Version: 6.1.0

cpe:2.3:a:vmware:vsphere_data_protection:6.1.0
Vmware » Vsphere Data Protection » Version: 6.1.1

cpe:2.3:a:vmware:vsphere_data_protection:6.1.1
Vmware » Vsphere Data Protection » Version: 6.1.2

cpe:2.3:a:vmware:vsphere_data_protection:6.1.2
Vmware » Vsphere Data Protection » Version: 6.1.3

cpe:2.3:a:vmware:vsphere_data_protection:6.1.3
Vmware » Vsphere Data Protection » Version: 6.1.4

cpe:2.3:a:vmware:vsphere_data_protection:6.1.4
Vmware » Vsphere Data Protection » Version: 6.1.5

cpe:2.3:a:vmware:vsphere_data_protection:6.1.5
Vmware » Vsphere Data Protection » Version: 6.1.6

cpe:2.3:a:vmware:vsphere_data_protection:6.1.6
Vmware » Vsphere Data Protection » Version: 6.1.7

cpe:2.3:a:vmware:vsphere_data_protection:6.1.7
Vmware » Vsphere Data Protection » Version: 6.1.8

cpe:2.3:a:vmware:vsphere_data_protection:6.1.8
Vmware » Vsphere Data Protection » Version: 6.1.9

cpe:2.3:a:vmware:vsphere_data_protection:6.1.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11077

Products

Pricing

Contact Us