CVE-2017-8012
First published: Fri Sep 22 2017(Updated: )
In EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs, the Java Management Extensions (JMX) protocol used to communicate between components in the Alerting and/or Compliance components can be leveraged to create a denial of service (DoS) condition. Attackers with knowledge of JMX agent user credentials could potentially exploit this vulnerability to create arbitrary files on the affected system and create a DoS condition by leveraging inherent JMX protocol capabilities.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Emc M\&r | ||
| Dell EMC Storage Monitoring and Reporting | ||
| Dell EMC ViPR SRM | <=4.0.2 | |
| Dell Emc Vnx Monitoring And Reporting |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell emc m\&r
- canonical/dell emc storage monitoring and reporting
- canonical/dell emc vipr srm
- version/dell emc vipr srm/4.0.2
- canonical/dell emc vnx monitoring and reporting