Home
HIGH: 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NDefault status
unaffected
Any version before 2025.2
affected
Default status
unaffected
Any version before 2025.2.1
affected
Default status
unaffected
Any version before 2025.1.0
affected
Default status
unaffected
Any version before 2025.1.0
affected
Default status
unaffected
Any version before 2025.2.0
affected
Default status
unaffected
Any version before 2026.2.0
affected
Default status
unaffected
Any version before 2025.2.0
affected
Default status
unaffected
Any version before 1.3.2
affected
Default status
unaffected
Any version before 2025.1.0
affected
Default status
unaffected
Any version before 2025.1.1
affected
Default status
unaffected
Any version before 2025.1.0
affected
Default status
unaffected
Any version before 4.2.1
affected
Description
Improper input validation in Delphix Continuous Data connectors allows an authenticated user to execute arbitrary operating system commands on the staging or target host.
Problem types
CWE-78 Improper neutralization of special elements used in an OS command ('OS command injection')
Product status
Any version before 2025.2
Any version before 2025.2.1
Any version before 2025.1.0
Any version before 2025.1.0
Any version before 2025.2.0
Any version before 2026.2.0
Any version before 2025.2.0
Any version before 1.3.2
Any version before 2025.1.0
Any version before 2025.1.1
Any version before 2025.1.0
Any version before 4.2.1
References
portal.perforce.com/...in-delphix-continuous-data-connectors