An issue was discovered in EMC Avamar Server 7.1.x, 7.2.x, 7.3.x, 7.4.x, 7.5.0; EMC NetWorker Virtual Edition (NVE) 9.0.x, 9.1.x, 9.2.x; and EMC Integrated Data Protection Appliance 2.0. A remote unauthenticated malicious user can potentially bypass application authentication and gain unauthorized root access to the affected systems.
2018-01-05T17:29:00.223
2024-11-21T03:14:45.130
Modified
CVSSv3.0: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | emc | avamar_server | 7.1-21 | Yes |
| Application | emc | avamar_server | 7.1-145 | Yes |
| Application | emc | avamar_server | 7.1-302 | Yes |
| Application | emc | avamar_server | 7.1-370 | Yes |
| Application | emc | avamar_server | 7.2-32 | Yes |
| Application | emc | avamar_server | 7.2-309 | Yes |
| Application | emc | avamar_server | 7.2-401 | Yes |
| Application | emc | avamar_server | 7.3-125 | Yes |
| Application | emc | avamar_server | 7.3-211 | Yes |
| Application | emc | avamar_server | 7.3-226 | Yes |
| Application | emc | avamar_server | 7.3-233 | Yes |
| Application | emc | avamar_server | 7.4-58 | Yes |
| Application | emc | avamar_server | 7.4-242 | Yes |
| Application | emc | avamar_server | 7.5-183 | Yes |
| Application | emc | integrated_data_protection_appliance | 2.0 | Yes |
| Application | emc | networker | 9.0 | Yes |
| Application | emc | networker | 9.1 | Yes |
| Application | emc | networker | 9.2 | Yes |