Added: 07/05/2018
CVE: CVE-2018-1235
BID: 104246
Dell EMC RecoverPoint is an application recovery solution.
A command injection vulnerability allows a remote attacker to execute arbitrary commands embedded in the username of an SSH authentication request.
Upgrade to Dell EMC RecoverPoint for Virtual Machines 5.1.1.3 or higher, or to Dell EMC RecoverPoint 5.1.2 or later.
<http://seclists.org/fulldisclosure/2018/May/61>
<https://www.foregenix.com/blog/foregenix-identify-multiple-dellemc-recoverpoint-zero-day-vulnerabilities>
Linux