CVE-2018-11064

Dell EMC Unity OE versions 4.3.0.x and 4.3.1.x and UnityVSA OE versions 4.3.0.x and 4.3.1.x contains an Incorrect File Permissions vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability to alter multiple library files in service tools that might result in arbitrary code execution with elevated privileges. No user file systems are directly affected by this vulnerability.
References
Link Resource
https://seclists.org/fulldisclosure/2018/Sep/55 Mailing List Third Party Advisory
http://www.securityfocus.com/bid/105447 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:dell:emc_unity_operating_environment:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_unityvsa_operating_environment:*:*:*:*:*:*:*:*

Information

Published : 2018-10-05 09:29

Updated : 2019-10-09 11:33


NVD link : CVE-2018-11064

Mitre link : CVE-2018-11064

Products Affected
No products.
CWE