CVE-2016-8216
MEDIUMEMC DD OS <5.5.5.0, <5.6.2.0, <5.7.2.10 - Command Injection
Title source: llmDescription
EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all versions prior to 5.7.2.10 has a command injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.
References (3)
Core 3
Core References
Mailing List, Third Party Advisory, VDB Entry x_refsource_confirm
http://www.securityfocus.com/archive/1/540059/30/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1037728
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/95829
Scores
CVSS v3
6.7
EPSS
0.0019
EPSS Percentile
40.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-264
Status
published
Products (5)
dell/emc_data_domain_os
5.4
dell/emc_data_domain_os
5.5
dell/emc_data_domain_os
5.6
dell/emc_data_domain_os
5.7
n/a/EMC Data Domain DD OS EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.
EMC Data Domain DD OS EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 fa
Published
Feb 03, 2017
Tracked Since
Feb 18, 2026