First published: Wed Jul 28 2021(Updated: )
Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC Avamar Server | =7.4.1 | |
Dell EMC Avamar Server | =7.5.0 | |
Dell EMC Avamar Server | =7.5.1 | |
Dell EMC Avamar Server | =18.1 | |
Dell EMC Avamar Server | =18.2 | |
Dell EMC Avamar Server | =19.1 | |
Dell EMC Avamar Server | =19.2 | |
Dell Emc Integrated Data Protection Appliance Firmware | =2.0 | |
Dell Emc Integrated Data Protection Appliance Firmware | =2.1 | |
Dell Emc Integrated Data Protection Appliance Firmware | =2.2 | |
Dell Emc Integrated Data Protection Appliance Firmware | =2.3 | |
Dell Emc Integrated Data Protection Appliance Firmware | =2.4 | |
Dell Emc Integrated Data Protection Appliance Firmware | =2.4.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5341 is a vulnerability that allows remote unauthenticated attackers to deserialize untrusted data on Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1, and 19.2, as well as Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4, and 2.4.1.
CVE-2020-5341 has a severity rating of 9.8 (Critical).
To fix the CVE-2020-5341 vulnerability, it is recommended to apply the necessary patches provided by Dell EMC.
Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1, and 19.2 are affected by CVE-2020-5341.
Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4, and 2.4.1 are affected by CVE-2020-5341.