Main
Vulnerability Database
Exploits
ID:6297 - Exploit for Remote code execution in RecoverPoint - CVE-2018-1235
ID:6297 - Exploit for Remote code execution in RecoverPoint - CVE-2018-1235
Published: June 17, 2021
Vulnerability identifier: #VU12995
Vulnerability risk: High
CVE-ID: CVE-2018-1235
CWE-ID: CWE-264
Exploitation vector: Remote access
Vulnerable software:
RecoverPoint
RecoverPoint
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to unspecified flaw. A remote attacker who has visibility of RecoverPoint on the network can execute arbitrary code on the underlying Linux operating system with root privileges.
The weakness exists due to unspecified flaw. A remote attacker who has visibility of RecoverPoint on the network can execute arbitrary code on the underlying Linux operating system with root privileges.
Remediation
Update to version 5.1.2 or 5.1.1.3.