Dell Avamar, version(s) 19.x, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
2024-12-10T11:15:07.400
2025-02-04T16:11:14.310
Analyzed
CVSSv3.1: 8.2 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | dell | avamar_server | 19.4 | Yes |
| Application | dell | avamar_server | 19.7 | Yes |
| Application | dell | avamar_server | 19.8 | Yes |
| Application | dell | avamar_server | 19.9 | Yes |
| Application | dell | avamar_server | 19.10 | Yes |
| Application | dell | avamar_server | 19.10 | Yes |
| Hardware | dell | avamar_data_store | gen4t | No |
| Hardware | dell | avamar_data_store | gen5a | No |