Home
Mapping Frameworks
CVE Home
OpenManage Server Administrator

CVE CVE-2019-3723 Mappings

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain a web parameter tampering vulnerability. A remote unauthenticated attacker could potentially manipulate parameters of web requests to OMSA to create arbitrary files with empty content or delete the contents of any existing file, due to improper input parameter validation

Mappings

Capability ID	Capability Description	Mapping Type	ATT&CK ID	ATT&CK Name
CVE-2019-3723	OpenManage Server Administrator	primary_impact	T1485	Data Destruction
CVE-2019-3723	OpenManage Server Administrator	secondary_impact	T1059	Command and Scripting Interpreter
CVE-2019-3723	OpenManage Server Administrator	secondary_impact	T1574	Hijack Execution Flow
CVE-2019-3723	OpenManage Server Administrator	exploitation_technique	T1190	Exploit Public-Facing Application