In EMC Avamar Server Software 7.4.1-58, 7.4.0-242, 7.3.1-125, 7.3.0-233, 7.3.0-226, an unauthorized attacker may leverage the file upload feature of the system maintenance page to load a maliciously crafted file to any directory which could allow the attacker to execute arbitrary code on the Avamar Server system.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published:

Updated: 2024-08-05T14:47:43.817Z

Reserved: 2016-12-29T00:00:00

Link: CVE-2017-4990

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2017-06-21T20:29:00.330

Modified: 2025-04-20T01:37:25.860

Link: CVE-2017-4990

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.