Short Name |
DB:MYSQL:CVE-2018-15768-CE |
---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
DB |
Keywords |
Dell OpenManage Network Manager MySQL Improper Access Control Command Execution |
Release Date |
2018/12/06 |
Update Number |
3123 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Dell OpenManage Network Manager MySQL. A successful attack can lead to arbitrary command execution.
Dell OpenManage Network Manager versions prior to 6.5.0 enabled read/write access to the file system for MySQL users due to insecure default configuration setting for the embedded MySQL database.