Improper Authentication Vulnerability in Dell EMC OpenManage Integration for Microsoft System Center
CVE-2020-5373

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Omimssc (openmanage Integration For Microsoft System Center)
Vendor: CVE Published:; 14 July 2020

Summary

Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) allows for an improper authentication vulnerability that could enable remote unauthenticated attackers to gain access to sensitive system inventory data. This issue affects versions prior to 7.2.1, potentially exposing managed devices to unauthorized access and data retrieval, creating significant security risks for organizations relying on this management tool.

Affected Version(s)

OMIMSSC (OpenManage Integration for Microsoft System Center) < 7.2.1

References

https://www.dell.com/support/article/en-us/sln322169/dsa-...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jul 14, 2020
Vulnerability Reserved
Jan 3, 2020