Authorization Bypass Vulnerability in Dell EMC Unisphere for PowerMax
CVE-2020-5345
6.4MEDIUM
Summary
An authorization bypass vulnerability exists in Dell EMC Unisphere for PowerMax and its Virtual Appliance, allowing an authenticated user with malicious intent to manipulate or halt database statistics. This flaw in versions prior to 9.1.0.17 for Unisphere and PowerMax OS Release 5978 poses a significant risk, enabling unauthorized actions that could compromise data integrity and operational functionality.
Affected Version(s)
Unisphere for PowerMax < 9.1.0.17
References
CVSS V3.1
Score:
6.4
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved