Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Control of Generation of Code ('Code Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Dell OpenManage Enterprise 代码注入漏洞
Vulnerability Description
Dell OpenManage Enterprise是美国戴尔(Dell)公司的一款用于IT基础架构管理的易于使用的一对多系统管理控制台。 该软件支持一个控制台中经济高效地为 Dell EMC PowerEdge 服务器提供全面的生命周期管理。 Dell OpenManage Enterprise 4.2.0之前版本存在代码注入漏洞,该漏洞源于代码生成控制不当,具有远程访问权限的低权限攻击者可能会利用此漏洞导致代码执行。
CVSS Information
N/A
Vulnerability Type
N/A