CVE: Common Vulnerabilities and Exposures

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

Expand or collapse notification button

Required CVE Record Information

Description

Dell EMC ESRS Policy Manager versions 6.8 and prior contain a remote code execution vulnerability due to improper configurations of triggered JMX services. A remote unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code in the server's JVM.

CVSS 1 Total

Product Status

Versions 1 Total

Default Status: unknown

affected

References 3 Total

securitytracker.com: 1041714
external site
vdb-entry
seclists.org: 20180924 DSA-2018-158: Dell EMC ESRS Policy Manager Remote Code Execution Vulnerability
external site
mailing-list
securityfocus.com: 105405
external site
vdb-entry

Updated: 2024-08-05

This container includes required additional information provided by the CVE Program for this vulnerability.

References 3 Total

securitytracker.com: 1041714
external site
vdb-entryx_transferred
seclists.org: 20180924 DSA-2018-158: Dell EMC ESRS Policy Manager Remote Code Execution Vulnerability
external site
mailing-listx_transferred
securityfocus.com: 105405
external site
vdb-entryx_transferred