Dell EMC RecoverPoint versions before 5.1.3 and RecoverPoint for VMs versions before 5.2.0.2 contain an OS command injection vulnerability in the installation feature of Boxmgmt CLI. A malicious boxmgmt user may potentially be able to execute arbitrary commands as root.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dell recoverpoint for virtual machines |
||
dell emc recoverpoint |