Authentication flaw

2022-07-2104:15:00

PRIOn knowledge base

www.prio-n.com

9.4 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.9%

JSON

Dell EMC PowerStore, contain(s) an Improper Restriction of Excessive Authentication Attempts Vulnerability in PowerStore Manager GUI. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to password brute-forcing. Account takeover is possible if weak passwords are used by users.

CPENameOperatorVersion
emc_powerstore_1200t_firmwareeq< 3.0.0.0-1732745
emc_powerstore_3200t_firmwareeq< 3.0.0.0-1732745
emc_powerstore_500t_firmwareeq< 3.0.0.0-1732745
emc_powerstore_5200t_firmwareeq< 3.0.0.0-1732745
emc_powerstore_9200t_firmwareeq< 3.0.0.0-1732745

Name	Operator	Version
emc_powerstore_1200t_firmware	eq	< 3.0.0.0-1732745
emc_powerstore_3200t_firmware	eq	< 3.0.0.0-1732745
emc_powerstore_500t_firmware	eq	< 3.0.0.0-1732745
emc_powerstore_5200t_firmware	eq	< 3.0.0.0-1732745
emc_powerstore_9200t_firmware	eq	< 3.0.0.0-1732745

References

www.dell.com/support/kbdoc/000201283