CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-35170

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479 contain a Cross-Site Scripting (XSS) vulnerability. An authenticated malicious user may potentially exploit this vulnerability to inject javascript code and affect other authenticated users’ sessions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.8%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 3.5

References

https://www.dell.com/support/kbdoc/000181212
https://www.dell.com/support/kbdoc/000181212

Products affected by CVE-2020-35170

Dell » Unisphere » Version: Any

cpe:2.3:a:dell:unisphere:*
Dell » Powermax Os » Version: 5978.221.221

cpe:2.3:o:dell:powermax_os:5978.221.221
Dell » Powermax Os » Version: 5978.479.479

cpe:2.3:o:dell:powermax_os:5978.479.479

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-35170

Products

Pricing

Contact Us