An issue exists in EMC RecoverPoint for Virtual Machines versions before 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions before 5.0.1.3. Command injection vulnerability in Boxmgmt CLI may allow a malicious user with boxmgmt privileges to bypass Boxmgmt CLI and run arbitrary commands with root privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dell emc recoverpoint |
||
dell emc recoverpoint for virtual machines |
||
dell emc recoverpoint 5.1.0.0 |