cnvd - cnvd-2018-04835

cnvd-2018-04835

Vulnerability from cnvd

Title: EMC RecoverPoint和EMC RecoverPoint for Virtual Machines命令注入漏洞

Description:

EMC RecoverPoint和EMC RecoverPoint for Virtual Machines（VMs）都是美国易安信（EMC）公司的产品。前者是一套灾难恢复和数据保护软件，后者是一套面向VMware环境的灾难恢复解决方案。Boxmgmt CLI是其中的一个命令行程序。

EMC RecoverPoint for VMs 5.1.1之前的版本、EMC RecoverPoint 5.1.0.0版本和5.0.1.3之前的版本中的Boxmgmt CLI存在命令注入漏洞。攻击者可利用该漏洞绕过Boxmgmt CLI，以root权限执行任意命令。

Severity: 高

Patch Name: EMC RecoverPoint和EMC RecoverPoint for Virtual Machines命令注入漏洞的补丁

Patch Description:

EMC RecoverPoint for VMs 5.1.1之前的版本、EMC RecoverPoint 5.1.0.0版本和5.0.1.3之前的版本中的Boxmgmt CLI存在命令注入漏洞。攻击者可利用该漏洞绕过Boxmgmt CLI，以root权限执行任意命令。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://emc.com/

Reference: http://seclists.org/fulldisclosure/2018/Feb/9 http://www.securitytracker.com/id/1040320

Impacted products

Name
['EMC RecoverPoint for VMs <5.1.1', 'EMC RecoverPoint 5.1.0.0', 'EMC RecoverPoint <5.0.1.3']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1184"
    }
  },
  "description": "EMC RecoverPoint\u548cEMC RecoverPoint for Virtual Machines\uff08VMs\uff09\u90fd\u662f\u7f8e\u56fd\u6613\u5b89\u4fe1\uff08EMC\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002\u524d\u8005\u662f\u4e00\u5957\u707e\u96be\u6062\u590d\u548c\u6570\u636e\u4fdd\u62a4\u8f6f\u4ef6\uff0c\u540e\u8005\u662f\u4e00\u5957\u9762\u5411VMware\u73af\u5883\u7684\u707e\u96be\u6062\u590d\u89e3\u51b3\u65b9\u6848\u3002Boxmgmt CLI\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u547d\u4ee4\u884c\u7a0b\u5e8f\u3002\r\n\r\nEMC RecoverPoint for VMs 5.1.1\u4e4b\u524d\u7684\u7248\u672c\u3001EMC RecoverPoint 5.1.0.0\u7248\u672c\u548c5.0.1.3\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684Boxmgmt CLI\u5b58\u5728\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7Boxmgmt CLI\uff0c\u4ee5root\u6743\u9650\u6267\u884c\u4efb\u610f\u547d\u4ee4\u3002",
  "discovererName": "unknwon",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://emc.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-04835",
  "openTime": "2018-03-12",
  "patchDescription": "EMC RecoverPoint\u548cEMC RecoverPoint for Virtual Machines\uff08VMs\uff09\u90fd\u662f\u7f8e\u56fd\u6613\u5b89\u4fe1\uff08EMC\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002\u524d\u8005\u662f\u4e00\u5957\u707e\u96be\u6062\u590d\u548c\u6570\u636e\u4fdd\u62a4\u8f6f\u4ef6\uff0c\u540e\u8005\u662f\u4e00\u5957\u9762\u5411VMware\u73af\u5883\u7684\u707e\u96be\u6062\u590d\u89e3\u51b3\u65b9\u6848\u3002Boxmgmt CLI\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u547d\u4ee4\u884c\u7a0b\u5e8f\u3002\r\n\r\nEMC RecoverPoint for VMs 5.1.1\u4e4b\u524d\u7684\u7248\u672c\u3001EMC RecoverPoint 5.1.0.0\u7248\u672c\u548c5.0.1.3\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684Boxmgmt CLI\u5b58\u5728\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7Boxmgmt CLI\uff0c\u4ee5root\u6743\u9650\u6267\u884c\u4efb\u610f\u547d\u4ee4\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "EMC RecoverPoint\u548cEMC RecoverPoint for Virtual Machines\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "EMC RecoverPoint for VMs \u003c5.1.1",
      "EMC RecoverPoint 5.1.0.0",
      "EMC RecoverPoint \u003c5.0.1.3"
    ]
  },
  "referenceLink": "http://seclists.org/fulldisclosure/2018/Feb/9\r\nhttp://www.securitytracker.com/id/1040320",
  "serverity": "\u9ad8",
  "submitTime": "2018-02-05",
  "title": "EMC RecoverPoint\u548cEMC RecoverPoint for Virtual Machines\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e"
}

CVE-2018-1184 (GCVE-0-2018-1184)

Vulnerability from cvelistv5

Published

2018-02-03 01:00

Modified

2024-08-05 03:51

Severity ?

CWE

Command injection vulnerability

Summary

An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Boxmgmt CLI may allow a malicious user with boxmgmt privileges to bypass Boxmgmt CLI and run arbitrary commands with root privileges.

References

▼	URL	Tags
	http://www.securitytracker.com/id/1040320	vdb-entry, x_refsource_SECTRACK
	http://seclists.org/fulldisclosure/2018/Feb/9	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3	Version: EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:51:48.881Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1040320",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040320"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2018/Feb/9"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3"
            }
          ]
        }
      ],
      "datePublic": "2018-02-02T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Boxmgmt CLI may allow a malicious user with boxmgmt privileges to bypass Boxmgmt CLI and run arbitrary commands with root privileges."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Command injection vulnerability",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-02-03T10:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "name": "1040320",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040320"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://seclists.org/fulldisclosure/2018/Feb/9"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "ID": "CVE-2018-1184",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Boxmgmt CLI may allow a malicious user with boxmgmt privileges to bypass Boxmgmt CLI and run arbitrary commands with root privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Command injection vulnerability"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1040320",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040320"
            },
            {
              "name": "http://seclists.org/fulldisclosure/2018/Feb/9",
              "refsource": "CONFIRM",
              "url": "http://seclists.org/fulldisclosure/2018/Feb/9"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2018-1184",
    "datePublished": "2018-02-03T01:00:00",
    "dateReserved": "2017-12-06T00:00:00",
    "dateUpdated": "2024-08-05T03:51:48.881Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted