← Voltar para CVEs
CVE-2017-4985
N/ADescricao
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, a local authenticated user may potentially escalate their privileges to root due to authorization checks not being performed on certain perl scripts. This may potentially be exploited by an attacker to run arbitrary commands as root on the targeted VNX Control Station system.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado6/19/2017
Ultima modificacao4/20/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
emc:vnx1emc:vnx1_firmwareemc:vnx2emc:vnx2_firmware
Fraquezas (CWE)
CWE-862
Referencias
http://www.securityfocus.com/archive/1/540738/30/0/threaded(security_alert@emc.com)
http://www.securityfocus.com/bid/99037(security_alert@emc.com)
http://www.securityfocus.com/archive/1/540738/30/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/99037(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.