Emc: >> Data Protection Advisor >> 6.1 Security Vulnerabilities
EMC Data Protection Advisor prior to 6.4 contains multiple blind SQL injection vulnerabilities. A remote authenticated attacker may potentially exploit these vulnerabilities to gain information about the application by causing execution of arbitrary SQL commands.
CVSS Score
8.8
EPSS Score
0.023
Published
2017-07-09
EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high privileged user may potentially exploit this vulnerability to access unauthorized information from the underlying OS server by supplying specially crafted strings in input parameters of the application.
CVSS Score
4.9
EPSS Score
0.007
Published
2017-07-09