这表明攻击企图利用 Dell EMC Avamar 和 Dell EMC 集成数据保护设备中的特权提升漏洞。该漏洞是由于处于开发模式的易受攻击的软件在处理恶意制作的 HTTP 请求时出现的错误。远程攻击者可能能够利用此漏洞通过精心设计的 HTTP 请求查看和修改本地下载服务 (LDLS) 凭据来提升他们对易受攻击系统的权限。

Dell EMC Avamar Server 7.3.1 Dell EMC Avamar Server 7.4.1 Dell EMC Avamar Server 7.5.0 Dell EMC Integrated Data Protection Appliance 2.0 Dell EMC Integrated Data Protection Appliance 2.1

特权升级：远程攻击者可以利用他们对易受攻击的系统的特权。

应用供应商提供的最新补丁。 https://download.emc.com/downloads/DL87396_Avamar_7.3.1_Hotfix_290316_for_Multiple_Authentication_Bypass_Security_Vulnerabilities.avp?source=OLS https://download.emc.com/downloads/DL88301_Hotfix_291882:_Dell_EMC_Avamar_7.4.1_and_Integrated_Data_Protection_Appliance_2.0_Installation_Manager_Missing_Access_Control_Vulnerability_(CVE-2018-1217）。 avp?source=OLS https://download.emc.com/downloads/DL88307_Hotfix_291881:_Dell_EMC_Avamar_7.5.0_Installation_Manager_Missing_Access_Control_Vulnerability_(CVE-2018-1217).avp?source=OLS https://download.emc.com/downloads/DL88301_Hotfix_291882： _Dell_EMC_Avamar_7.4.1_and_Integrated_Data_Protection_Appliance_2.0_Installation_Manager_Missing_Access_Control_Vulnerability（CVE-2018至1217年）.avp？源= OLS https://download.emc.com/downloads/DL88307_Hotfix_291881:_Dell_EMC_Avamar_7.5.0_Installation_Manager_Missing_Access_Control_Vulnerability_(CVE-2018-1217).avp?source=OLS