CVE-2020-5319
published 2020-02-06CVE-2020-5319: Dell EMC Unity, Dell EMC Unity XT, and Dell EMC UnityVSA versions prior to 5.0.2.0.5.009 contain a Denial of Service vulnerability on NAS Server SSH…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Dell EMC Unity, Dell EMC Unity XT, and Dell EMC UnityVSA versions prior to 5.0.2.0.5.009 contain a Denial of Service vulnerability on NAS Server SSH implementation that is used to provide SFTP service on a NAS server. A remote unauthenticated attacker may potentially exploit this vulnerability and cause a Denial of Service (Storage Processor Panic) by sending an out of order SSH protocol sequence.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | emc_unity_operating_environment | < 5.0.2.0.5.009 | 5.0.2.0.5.009 |
| dell | emc_unity_xt_operating_environment | < 5.0.2.0.5.009 | 5.0.2.0.5.009 |
| dell | emc_unityvsa_operating_environment | < 5.0.2.0.5.009 | 5.0.2.0.5.009 |
| dell | unity | >= unspecified < 5.0.2.0.5.009 | 5.0.2.0.5.009 |