← Voltar para CVEs
CVE-2017-4987
N/ADescricao
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, a local authenticated user can load a maliciously crafted file in the search path which may potentially allow the attacker to execute arbitrary code on the targeted VNX Control Station system, aka an uncontrolled search path vulnerability.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado6/19/2017
Ultima modificacao4/20/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
emc:vnx1emc:vnx1_firmwareemc:vnx2emc:vnx2_firmware
Fraquezas (CWE)
CWE-427
Referencias
http://www.securityfocus.com/archive/1/540738/30/0/threaded(security_alert@emc.com)
http://www.securityfocus.com/bid/99045(security_alert@emc.com)
http://www.securityfocus.com/archive/1/540738/30/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/99045(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.