Directory Traversal Vulnerability in Dell Storage Manager EMConfigMigration Service

Directory Traversal Vulnerability in Dell Storage Manager EMConfigMigration Service

CVE-2017-14384 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

In Dell Storage Manager versions earlier than 16.3.20, the EMConfigMigration service is affected by a directory traversal vulnerability. A remote malicious user could potentially exploit this vulnerability to read unauthorized files by supplying specially crafted strings in input parameters of the application. A malicious user cannot delete or modify any files via this vulnerability.

Learn more about our User Device Pen Test.