CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29084

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account takeover is possible if weak passwords are used by users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.7%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 10.0

References

Products affected by CVE-2022-29084

Dell » Unity Operating Environment » Version: N/A

cpe:2.3:a:dell:unity_operating_environment:-
Dell » Unity Operating Environment » Version: 5.0.7.0.5.008

cpe:2.3:a:dell:unity_operating_environment:5.0.7.0.5.008
Dell » Unity Xt Operating Environment » Version: N/A

cpe:2.3:a:dell:unity_xt_operating_environment:-
Dell » Unity Xt Operating Environment » Version: 5.0.7.0.5.008

cpe:2.3:a:dell:unity_xt_operating_environment:5.0.7.0.5.008
Dell » Unityvsa Operating Environment » Version: N/A

cpe:2.3:a:dell:unityvsa_operating_environment:-
Dell » Unityvsa Operating Environment » Version: 5.0.7.0.5.008

cpe:2.3:a:dell:unityvsa_operating_environment:5.0.7.0.5.008

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29084

Products

Pricing

Contact Us