Dell Emc Unity Vsa Operating Environment vulnerabilities
3 known vulnerabilities affecting dell/emc_unity_vsa_operating_environment.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2020-26199MEDIUMCVSS 6.7fixed in 5.0.4.0.5.0122021-01-05
CVE-2020-26199 [MEDIUM] CWE-532 CVE-2020-26199: Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials (including the Unisphere admin privilege user) password is stored in a plain text in multiple log files. A local authenticated attacker with access to the log files may use the exposed password to gain access
nvd
CVE-2020-29490MEDIUMCVSS 6.5fixed in 5.0.4.0.5.0122021-01-05
CVE-2020-29490 [MEDIUM] CWE-400 CVE-2020-29490: Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service v
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service (Storage Processor Panic) by sending specially crafted UDP requests.
nvd
CVE-2020-29489MEDIUMCVSS 6.7fixed in 5.0.4.0.5.0122021-01-05
CVE-2020-29489 [MEDIUM] CWE-276 CVE-2020-29489: Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text passwor
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. A user credentials (including the Unisphere admin privilege user) password is stored in a plain text in a system file. A local authenticated attacker with access to the system files may use the exposed password to gain access
nvd