Improper Authorization Vulnerability in Dell EMC PowerStore
CVE-2020-5372

8.6HIGH

Key Information:

Vendor: Dell
Status: Powerstore
Vendor: CVE Published:; 6 July 2020

What is CVE-2020-5372?

Dell EMC PowerStore versions before 1.0.1.0.5.002 contain a vulnerability that allows remote unauthenticated attackers to access exposed test interface ports. This can lead to potential Denial of Service attacks, affecting the availability of the system. Organizations using affected versions should prioritize updates to ensure robust security and protect against unauthorized access.

Affected Version(s)

PowerStore < 1.0.1.0.5.002

References

https://www.dell.com/support/security/en-us/details/54473...

x_refsource_MISC

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 6, 2020
Vulnerability Reserved
Jan 3, 2020