CVEs-PoC/2018/CVE-2018-11066.md

### [CVE-2018-11066](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11066)
![](https://img.shields.io/static/v1?label=Product&message=Avamar&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Integrated%20Data%20Protection%20Appliance%20&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Remote%20Code%20Execution%20Vulnerability&color=brighgreen)

### Description

Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain a Remote Code Execution vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary commands on the server.

### POC

#### Reference
- https://www.vmware.com/security/advisories/VMSA-2018-0029.html

#### Github
No PoCs found on GitHub currently.