Web parameter tampering vulnerability in Dell EMC OpenManage Server Administrator - CVE-2019-3723ID: oval:org.secpod.oval:def:89637 | Date: (C)2023-05-03 (M)2023-05-03 |
Class: VULNERABILITY | Family: windows |
The host is installed with Dell EMC OpenManage Server Administrator before 9.1.0.3 or 9.2.x before 9.2.0.4 and is prone to a web parameter tampering vulnerability. A flaw is present in the application, which fails to properly validate parameters of web requests to OMSA. Successful exploitation could allow an attacker to exploit this vulnerability to create arbitrary files with empty content or delete the contents of any existing file.
Platform: |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows 10 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |
Microsoft Windows Server 2022 |
Microsoft Windows 11 |
Product: |
Dell EMC OpenManage Server Administrator |