CVE-2018-15764

Dell EMC ESRS Policy Manager versions 6.8 and prior contain a remote code execution vulnerability due to improper configurations of…

dell·NVD-CWE-noinfo·Published 2018-09-28

CVSS

—

EPSS

0.05

KEV

Exploits

cve.orgen

279 chars

Dell EMC ESRS Policy Manager versions 6.8 and prior contain a remote code execution vulnerability due to improper configurations of triggered JMX services. A remote unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code in the server's JVM.

NVDen

279 chars

NVDes

311 chars

Dell EMC ESRS Policy Manager en versiones 6.8 y anteriores contiene una vulnerabilidad de ejecución remota de código debido a configuraciones incorrectas de los servicios JMX activados. Un atacante remoto no autenticado podría explotar esta vulnerabilidad para ejecutar código arbitrario en el JVM del servidor.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.0	Primary	cve.org	9.8	—	—	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H