Vulnerability Details CVE-2020-5345
Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an authorization bypass vulnerability. An authenticated malicious user may potentially execute commands to alter or stop database statistics.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.9%
CVSS Severity
CVSS v3 Score 6.4
CVSS v2 Score 5.5
References
- https://www.dell.com/support/security/en-us/details/544585/DSA-2020-065-Dell-EMC-Unisphere-for-PowerMax-Dell-EMC-Unisphere-for-PowerMax-Virtual-Appliance
- https://www.dell.com/support/security/en-us/details/544585/DSA-2020-065-Dell-EMC-Unisphere-for-PowerMax-Dell-EMC-Unisphere-for-PowerMax-Virtual-Appliance
Products affected by CVE-2020-5345
-
cpe:2.3:a:dell:emc_unisphere_for_powermax:-
-
cpe:2.3:a:dell:emc_unisphere_for_powermax:9.0.2.16
-
cpe:2.3:a:dell:emc_unisphere_for_powermax:9.1.0.9
-
cpe:2.3:a:dell:emc_unisphere_for_powermax_virtual_appliance:-
-
cpe:2.3:o:dell:powermax_os:5978