Multiple Command Injection Vulnerabilities in EMC RecoverPoint

Multiple Command Injection Vulnerabilities in EMC RecoverPoint

CVE-2016-6649 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions before 5.0 are affected by multiple command injection vulnerabilities where a malicious administrator with configuration privileges may bypass the user interface and escalate his privileges to root.

Learn more about our User Device Pen Test.