Intrusion Prevention



This indicates an attack attempt against a Directory Traversal vulnerability in EMC VMAX3 VASA Provider.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application while handling maliciously crafted requests. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.

Affected Products

EMC VMAX3 VASA Provider 8.3.x and prior


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor

CVE References

CVE-2017-4997 CVE-2018-1215