← Back to CVEs
CVE-2017-4987
N/ADescription
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, a local authenticated user can load a maliciously crafted file in the search path which may potentially allow the attacker to execute arbitrary code on the targeted VNX Control Station system, aka an uncontrolled search path vulnerability.
CVE Details
CVSS v3.1 ScoreN/A
Published6/19/2017
Last Modified4/20/2025
Sourcenvd
Honeypot Sightings0
Affected Products
emc:vnx1emc:vnx1_firmwareemc:vnx2emc:vnx2_firmware
Weaknesses (CWE)
CWE-427
References
http://www.securityfocus.com/archive/1/540738/30/0/threaded(security_alert@emc.com)
http://www.securityfocus.com/bid/99045(security_alert@emc.com)
http://www.securityfocus.com/archive/1/540738/30/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/99045(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.