Is CVE-2018-1217 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Dell Emc Avamar, Integrated Data Protection Appliance

CVE-2018-1217

Avamar Installation Manager in Dell EMC Avamar Server 7.3.1, 7.4.1, and 7.5.0, and Dell EMC Integrated Data Protection Appliance 2.0 and 2.1, is affected by a missing access control check vulnerability which could potentially allow a remot…

EPSS: 0.659 (98.5th percentile) — read the EPSS interpretation.

Affected products

Dell Emc Avamar, Integrated Data Protection Appliance — versions Integrated Data Protection Appliance Versions 2.0, 2.1, Avamar Server versions 7.3.1, 7.4.1, 7.5.0

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

44441 (exploit, x_refsource_EXPLOIT-DB)
1040641 (vdb-entry, x_refsource_SECTRACK)
20180405 DSA-2018-025: Dell EMC Avamar and Integrated Data Protection Appliance Installation Manager Missing Access Control Vulnerability (mailing-list, x_refsource_FULLDISC)

Frequently asked questions

What is CVE-2018-1217?: CVE-2018-1217 is a vulnerability in Dell Emc Avamar, Integrated Data Protection Appliance. Published 2018-04-09.
Is CVE-2018-1217 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.