Path traversal in EMC Data Protection Advisor - CVE-2016-8211
Published: February 3, 2017 / Updated: August 8, 2020
Vulnerability identifier: #VU39746
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2016-8211
CWE-ID: CWE-22
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Dell
Affected software:
EMC Data Protection Advisor
EMC Data Protection Advisor
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 prior to patch 446 has a path traversal vulnerability that may potentially be exploited by malicious users to compromise the affected system.
How to mitigate CVE-2016-8211
Install update from vendor's website.