Dell EMC OpenManage Server Administrator versions 9.4 Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) Vulnerability
Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities.
The information has been provided by David Yesland
The original article can be found at:https://www.dell.com/support/article/en-us/sln322304/dsa-2020-172-dell-emc-openmanage-server-administrator-omsa-path-traversal-vulnerability?lang=en
An unauthenticated remote attacker could potentially exploit these vulnerabilities by sending a crafted Web API request containing directory traversal character sequences to gain file system access on the compromised management station.
Dell EMC OpenManage Server Administrator versions 9.4