cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2017-8013,https://securityvulnerability.io/vulnerability/CVE-2017-8013,,"EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: ""Apollo System Test"", ""emc.dpa.agent.logon"" and ""emc.dpa.metrics.logon"". An attacker with knowledge of the password could potentially use these accounts via REST APIs to gain unauthorized access to EMC Data Protection Advisor (including potentially access with administrative privileges).",Dell,Emc Data Protection Advisor,9.8,CRITICAL,0.07915999740362167,false,,false,false,false,,,false,false,,2018-03-16T20:29:00.000Z,0
CVE-2017-10955,https://securityvulnerability.io/vulnerability/CVE-2017-10955,,"This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data Protection Advisor 6.3.0. Authentication is required to exploit this vulnerability. The specific flaw exists within the EMC DPA Application service, which listens on TCP port 9002 by default. When parsing the preScript parameter, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute arbitrary code under the context of SYSTEM. Was ZDI-CAN-4697. NOTE: Dell EMC disputes that this is a vulnerability",Dell,Dell Emc Data Protection Advisor,8.8,HIGH,0.021490000188350677,false,,false,false,false,,,false,false,,2017-10-19T19:00:00.000Z,0
CVE-2016-8211,https://securityvulnerability.io/vulnerability/CVE-2016-8211,,"EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 prior to patch 446 has a path traversal vulnerability that may potentially be exploited by malicious users to compromise the affected system.",Dell,"Emc Data Protection Advisor Emc Data Protection Advisor 6.1.x, Emc Data Protection Advisor 6.2, Emc Data Protection Advisor 6.2.1, Emc Data Protection Advisor 6.2.2, Emc Data Protection Advisor 6.2.3 Prior To Patch 446",7.5,HIGH,0.024709999561309814,false,,false,false,false,,,false,false,,2017-02-03T07:24:00.000Z,0