Dell Emc Unity Operating Environment vulnerabilities

2 known vulnerabilities affecting dell_emc/unity_operating_environment.

Total CVEs

2

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1

CVE-2019-3754MEDIUMCVSS 6.1≥ unspecified, < 5.0.0.0.5.1162019-09-03

CVE-2019-3754 [MEDIUM] CWE-79 CVE-2019-3754: Dell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions pri Dell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions prior to 5.0.0.0.5.116 and Dell EMC VNXe3200 versions prior to 3.1.10.9946299 contain a reflected cross-site scripting vulnerability on the cas/logout page. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim

CVE-2018-1239HIGHCVSS 7.2vversions prior to 4.3.0.15220779682018-05-08

CVE-2018-1239 [HIGH] CWE-78 CVE-2018-1239: Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multipl Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities. A remote application admin user could potentially exploit the vulnerabilities to execute arbitrary OS commands as system root on the system where Dell EMC Unity is installed.