← Retour aux CVEs
CVE-2019-3720
MEDIUM4.9
Description
Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability. A remote authenticated malicious user with admin privileges could potentially exploit this vulnerability to gain unauthorized access to the file system by exploiting insufficient sanitization of input parameters.
Details CVE
Score CVSS v3.14.9
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisHIGH
Interaction utilisateurNONE
Publie4/25/2019
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
dell:emc_openmanage_server_administrator
Faiblesses (CWE)
CWE-22
References
http://www.securityfocus.com/bid/108092(security_alert@emc.com)
https://www.dell.com/support/article/us/en/04/sln316915/dsa-2019-060-dell-emc-open-manage-system-administrator-multiple-vulnerabilities?lang=en(security_alert@emc.com)
http://www.securityfocus.com/bid/108092(af854a3a-2127-422b-91ae-364da2661108)
https://www.dell.com/support/article/us/en/04/sln316915/dsa-2019-060-dell-emc-open-manage-system-administrator-multiple-vulnerabilities?lang=en(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.