Dell.OpenManage.MySQL.Access.Control.Code.Execution
Description
This indicates an attack attempt against an arbitrary Code Execution in Dell OpenManage Network Manager.
The vulnerability is due to insecure default configuration settings for the embedded MySQL database. It allows a remote attacker to execute arbitrary code via a crafted request.
Affected Products
Dell OpenManage Network Manager version prior to 6.5.3 (CVE-2018-15767)
Dell OpenManage Network Manager version prior to 6.5.0 (all CVEs)
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version,available from the web site:
https://www.dell.com/support/article/ga/fr/gabsdt1/sln314610/dell-openmanage-network-manager-security-vulnerabilities?lang=en
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |