CVE-2020-5345

6.4MEDIUM

Key Information:

Vendor: Dell
Status: Unisphere For Powermax
Vendor: CVE Published:; 23 June 2020

Summary

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an authorization bypass vulnerability. An authenticated malicious user may potentially execute commands to alter or stop database statistics.

Affected Version(s)

Unisphere for PowerMax < 9.1.0.17

References

https://www.dell.com/support/security/en-us/details/54458...

x_refsource_MISC

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jun 23, 2020
Vulnerability Reserved
Jan 3, 2020