Dell Emc Avamar Server — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Emc Avamar Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2020-29495 — CVSS 10.0 (critical): DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness Analyzer. A remote…
CVE-2020-29493 — CVSS 10.0 (critical): DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a SQL Injection Vulnerability in Fitness Analyzer. A remote unauthenticated…
CVE-2020-5341 — CVSS 9.8 (critical): Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC…
CVE-2020-29494 — CVSS 8.7 (high): Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM. A remote user could potentially exploit…
CVE-2019-3752 — CVSS 8.2 (high): Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2 and 19.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0…
CVE-2021-21511 — CVSS 8.1 (high): Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged…
CVE-2019-3765 — CVSS 8.1 (high): Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2 and 19.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0…
CVE-2021-36318 — CVSS 6.7 (medium): Dell EMC Avamar versions 18.2,19.1,19.2,19.3,19.4 contain a plain-text password storage vulnerability. A high privileged user could…
CVE-2021-36316 — CVSS 6.7 (medium): Dell EMC Avamar Server versions 18.2, 19.1, 19.2, 19.3, and 19.4 contain an improper privilege management vulnerability in AUI. A malicious…
CVE-2021-36317 — CVSS 6.7 (medium): Dell EMC Avamar Server version 19.4 contains a plain-text password storage vulnerability in AvInstaller. A local attacker could potentially…
CVE-2020-5329 — CVSS 6.1 (medium): Dell EMC Avamar Server contains an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to…