EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Privilege Escalation
Java
RCE
Avamar Server
Avamar Server Virtual Edition
NVD
CVSS 2.0
9.0
EPSS
1.5%