Description
Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM. A remote user could potentially exploit this vulnerability, to gain unauthorized write access to the arbitrary files stored on the server filesystem, causing deletion of arbitrary files.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://www.dell.com/support/kbdoc/en-us/000181806/dsa-2020-272-dell-emc-avamar-server-security-update-for-multiple-vulnerabilities
Scores
CVSS v3
8.7
EPSS
0.0094
EPSS Percentile
76.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (5)
dell/emc_avamar_server
19.1
dell/emc_avamar_server
19.2
dell/emc_avamar_server
19.3
dell/emc_integrated_data_protection_appliance
2.5
dell/emc_integrated_data_protection_appliance
2.6
Published
Jan 14, 2021
Tracked Since
Feb 18, 2026