CVE-2019-18581
First published: Fri Dec 06 2019(Updated: )
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server missing authorization vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially exploit this vulnerability to alter the application’s allowable list of OS commands. This may lead to arbitrary OS command execution as the regular user runs the DPA service on the affected system.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell EMC Data Protection Advisor | =6.3 | |
| Dell EMC Data Protection Advisor | =6.4 | |
| Dell EMC Data Protection Advisor | =6.5 | |
| Dell EMC Data Protection Advisor | =18.1 | |
| Dell EMC Data Protection Advisor | =18.2 | |
| Dell EMC Data Protection Advisor | =19.1 | |
| Dell Emc Integrated Data Protection Appliance Firmware | =2.0 | |
| Dell Emc Integrated Data Protection Appliance Firmware | =2.1 | |
| Dell Emc Integrated Data Protection Appliance Firmware | =2.2 | |
| Dell Emc Integrated Data Protection Appliance Firmware | =2.3 | |
| Dell Emc Integrated Data Protection Appliance Firmware | =2.4 | |
| Dell Emc Idpa Dp4400 | ||
| Dell Emc Idpa Dp5800 | ||
| Dell Emc Idpa Dp8300 | ||
| Dell Emc Idpa Dp8800 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-18581?
CVE-2019-18581 is a vulnerability in Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2, and 19.1 that allows a remote authenticated malicious user with administrative privileges to exploit a server missing authorization vulnerability in the REST API.
How severe is CVE-2019-18581?
CVE-2019-18581 has a severity rating of 7.2, which is classified as critical.
Which versions of Dell EMC Data Protection Advisor are affected by CVE-2019-18581?
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 prior to patch 83, and 19.1 prior to patch 71 are affected by CVE-2019-18581.
How can a remote authenticated user exploit CVE-2019-18581?
A remote authenticated malicious user with administrative privileges can potentially exploit the server missing authorization vulnerability in the REST API of Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 prior to patch 83, and 19.1 prior to patch 71.
Is there a security update for CVE-2019-18581?
Yes, Dell has released a security update for CVE-2019-18581 which can be found at the following link: [Dell Security Update for CVE-2019-18581](https://www.dell.com/support/security/en-us/details/539430/DSA-2019-155-Dell-EMC-Data-Protection-Advisor-Security-Update-for-Multiple-Vulnerabilities)
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- agent/tags
- agent/first-publish-date
- vendor/dell
- canonical/dell emc data protection advisor
- version/dell emc data protection advisor/6.3
- version/dell emc data protection advisor/6.4
- version/dell emc data protection advisor/6.5
- version/dell emc data protection advisor/18.1
- version/dell emc data protection advisor/18.2
- version/dell emc data protection advisor/19.1
- canonical/dell emc integrated data protection appliance firmware
- version/dell emc integrated data protection appliance firmware/2.0
- version/dell emc integrated data protection appliance firmware/2.1
- version/dell emc integrated data protection appliance firmware/2.2
- version/dell emc integrated data protection appliance firmware/2.3
- version/dell emc integrated data protection appliance firmware/2.4
- canonical/dell emc idpa dp4400
- canonical/dell emc idpa dp5800
- canonical/dell emc idpa dp8300
- canonical/dell emc idpa dp8800