Vulnerability Description
Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability. A remote authenticated malicious user with admin privileges could potentially exploit this vulnerability to gain unauthorized access to the file system by exploiting insufficient sanitization of input parameters.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Emc Openmanage Server Administrator | < 9.3.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/108092Broken LinkThird Party AdvisoryVDB Entry
- https://www.dell.com/support/article/us/en/04/sln316915/dsa-2019-060-dell-emc-opVendor Advisory
- http://www.securityfocus.com/bid/108092Broken LinkThird Party AdvisoryVDB Entry
- https://www.dell.com/support/article/us/en/04/sln316915/dsa-2019-060-dell-emc-opVendor Advisory
FAQ
What is CVE-2019-3720?
CVE-2019-3720 is a vulnerability with a CVSS score of 4.9 (MEDIUM). Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability. A remote authenticated malicious user with admin privileges could potentially expl...
How severe is CVE-2019-3720?
CVE-2019-3720 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-3720?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Emc Openmanage Server Administrator.