Threat Encyclopedia

Dell.OpenManage.MySQL.Access.Control.Code.Execution

description-logoDescription

This indicates an attack attempt against an arbitrary Code Execution in Dell OpenManage Network Manager.
The vulnerability is due to insecure default configuration settings for the embedded MySQL database. It allows a remote attacker to execute arbitrary code via a crafted request.

affected-products-logoAffected Products

Dell OpenManage Network Manager version prior to 6.5.3 (CVE-2018-15767)
Dell OpenManage Network Manager version prior to 6.5.0 (all CVEs)

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

Telemetry logoTelemetry