Lucene search
K

520 matches found

Positive Technologies
Positive Technologies
added 2023/10/23 12:0 a.m.8 views

PT-2023-28677 · Dell · Dell Unity

Name of the Vulnerable Software and Affected Versions: Dell Unity versions prior to 5.3 Description: The issue allows an authenticated, local attacker to exploit a Restricted Shell Bypass vulnerability by authenticating to the device CLI and issuing certain commands. Recommendations: For versions...

7.8CVSS7.5AI score0.00177EPSS
Exploits0References4
NVD
NVD
added 2022/06/02 9:15 p.m.32 views

CVE-2022-29084

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account...

10CVSS0.01803EPSS
Exploits0References1
OSV
OSV
added 2022/06/02 9:15 p.m.4 views

CVE-2022-29084

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account...

9.8CVSS5.8AI score0.01803EPSS
Exploits0References1
NVD
NVD
added 2022/06/02 9:15 p.m.14 views

CVE-2022-29085

Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. The credentials of a user with high privileges are stored in plain text. A local malicious user with high privileges...

6.7CVSS0.00184EPSS
Exploits0References1
OSV
OSV
added 2022/06/02 9:15 p.m.5 views

CVE-2022-29085

Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. The credentials of a user with high privileges are stored in plain text. A local malicious user with high privileges...

6.7CVSS5.8AI score0.00184EPSS
Exploits0References1
Prion
Prion
added 2022/06/02 9:15 p.m.25 views

Design/Logic Flaw

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account...

10CVSS9.7AI score0.01803EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2022/06/02 9:0 p.m.73 views

CVE-2022-29085

CVE-2022-29085 affects Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173. The issue is a plain-text password storage vulnerability in which credentials of a high-privilege user are stored in plain text when certain off-array tools run on the system. A local high-privile...

6.7CVSS6.6AI score0.00184EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2022/06/02 9:0 p.m.35 views

CVE-2022-29084

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account...

8.1CVSS9.9AI score0.01803EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.7 views

多款Dell产品安全漏洞

Dell Unity and Dell UnityXT are both products of Dell Incorporated Dell, U.S.A. Dell Unity is a set of virtual Unity storage environments.Dell UnityXT is a set of virtual Unity storage environments. A security vulnerability exists in Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to...

10CVSS8.3AI score0.01803EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.5 views

多款Dell产品安全漏洞

Dell UnityVSA and others are products of Dell USA.Dell UnityVSA is a set of virtual Unity storage environments.Dell Unity is Dell UnityXT is A security vulnerability exists in Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 that stems from the inclusion of a plain tex...

6.7CVSS6.6AI score0.00184EPSS
Exploits0References2
OSV
OSV
added 2022/05/26 4:15 p.m.5 views

CVE-2022-29091

Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0.5.173 contain a Reflected Cross-Site Scripting Vulnerability in Unisphere GUI. An Unauthenticated Remote Attacker could potentially exploit this vulnerability, leading to the execution of malicious HTML or JavaScript code in a...

6.1CVSS6.5AI score0.00928EPSS
Exploits0References1
Prion
Prion
added 2022/05/26 4:15 p.m.19 views

Cross site scripting

Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0.5.173 contain a Reflected Cross-Site Scripting Vulnerability in Unisphere GUI. An Unauthenticated Remote Attacker could potentially exploit this vulnerability, leading to the execution of malicious HTML or JavaScript code in a...

4.3CVSS6.2AI score0.00928EPSS
Exploits0References1Affected Software3
CNNVD
CNNVD
added 2022/05/26 12:0 a.m.5 views

多款DELL产品跨站脚本漏洞

DELL UnityVSA and DELL Unity are both products of Dell DELL Inc.UnityVSA is a set of virtual Unity storage environments.DELL Unity is a set of virtual Unity storage environments. A security vulnerability exists in Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0.5.173, which...

6.1CVSS6.4AI score0.00928EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/11 12:0 a.m.7 views

CVE-2022-29091

Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0.5.173 contain a Reflected Cross-Site Scripting Vulnerability in Unisphere GUI. An Unauthenticated Remote Attacker could potentially exploit this vulnerability, leading to the execution of malicious HTML or JavaScript code in a...

6.1CVSS6.6AI score0.00928EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/29 12:0 a.m.6 views

CVE-2022-29084

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account...

10CVSS7.2AI score0.01803EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/29 12:0 a.m.4 views

CVE-2022-29085

Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. The credentials of a user with high privileges are stored in plain text. A local malicious user with high privileges...

6.7CVSS6.7AI score0.00184EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.6 views

DELL Dell EMC Unity和UnityVSA 信息泄露漏洞

DELL Dell EMC Unity and UnityVSA are both products of Dell DELL Corporation, U.S.A. Dell EMC Unity is a unified storage array product.UnityVSA is a suite of virtual Unity storage environments. A security vulnerability exists in Dell EMC Unity, Unity XT, and UnityVSA that stems from a plaintext...

6.7CVSS6.7AI score0.00198EPSS
Exploits0References1
OSV
OSV
added 2021/04/30 9:15 p.m.6 views

CVE-2021-21547

Dell EMC Unity, UnityVSA, and Unity XT versions prior to 5.0.7.0.5.008 contain a plain-text password storage vulnerability when the Dell Upgrade Readiness Utility is run on the system. The credentials of the Unisphere Administrator are stored in plain text. A local malicious user with high...

6.7CVSS5.8AI score0.00143EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.3 views

Dell EMC Unity and UnityVSA Security Bypass Vulnerability

Dell EMC Unity and UnityVSA are both products of Dell, Inc.Dell EMC Unity is a unified storage array product.UnityVSA is a set of virtual Unity storage environments. A security vulnerability exists in Dell EMC Unity prior to version 5.0.0.0.5.116 and UnityVSA prior to version 5.0.0.0.5.116, which...

7.8CVSS6.7AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2018/09/28 6:29 p.m.4 views

CVE-2018-1251

Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains a URL Redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect Unity users to arbitrary web URLs by tricking the victim user to click on a maliciously crafted...

8.1CVSS5.9AI score0.02455EPSS
Exploits0References1
Rows per page
Query Builder