CVE-2018-11067 in Dell and VMware Products

CVE-2018-11067 in Dell and VMware Products
Published on November 26, 2018

Dell EMC Avamar and Integrated Data Protection Appliance Open Redirection Vulnerability

Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain an open redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links. The vulnerability could be used to conduct phishing attacks that cause users to unknowingly visit malicious sites.

Products Associated with CVE-2018-11067

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-11067 are published in these products:

Affected Versions

Version 7.2.0 is affected.

Version 7.2.1 is affected.

Version 7.3.0 is affected.

Version 7.3.1 is affected.

Version 7.4.0 is affected.

Version 7.4.1 is affected.

Version 7.5.0 is affected.

Version 7.5.1 is affected.

Version 18.1 is affected.

Version 2.0 is affected.

Version 2.1 is affected.

Version 2.2 is affected.

Exploit Probability

EPSS

0.51%

Percentile

65.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-11067 in Dell and VMware ProductsPublished on November 26, 2018

Products Associated with CVE-2018-11067

Affected Versions

Exploit Probability

CVE-2018-11067 in Dell and VMware Products
Published on November 26, 2018