14 matches found
EUVD-2022-37318
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp...
CVE-2022-34363
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp...
CVE-2022-34363
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp...
PT-2026-42778
Name of the Vulnerable Software and Affected Versions Dell Unisphere for PowerMax vApp versions prior to 10.0.0.2 Description The Unisphere for VMAX application running in vApp contains an authorization bypass, which allows an attacker to gain unauthorized access to restricted areas or functions ...
EUVD-2018-11850
Malware in sbrugna...
CVE-2018-1215
An arbitrary file upload vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
Hardcoded credentials
A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
CVE-2018-1215
An arbitrary file upload vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
Vulnerability of EMC Unisphere for VMAX Virtual Appliance, EMC VMAX Embedded Management, EMC VASA Virtual Appliance, and EMC Solutions Enabler Virtual Appliance systems lies in their lack of access control mechanisms. This vulnerability allows attackers to bypass authentication procedures.
The vulnerabilities of EMC Unisphere for VMAX Virtual Appliance, EMC VMAX Embedded Management, EMC VASA Virtual Appliance, and EMC Solutions Enabler Virtual Appliance are related to deficiencies in access control. Exploiting these vulnerabilities could allow a malicious actor to bypass...
EMC Unisphere for VMAX Virtual Appliance and Solutions Enabler Virtual Appliance Arbitrary Command Execution Vulnerability (CNVD-2016-08762)
EMC Unisphere for VMAX Virtual Appliance and Solutions Enabler Virtual Appliance are both products of EMC. The former is a set of VMAX virtual storage series of management equipment, the latter is a set of solutions application virtual appliance. vApp Managers web application is one of the Web...
EMC Unisphere for VMAX Virtual Appliance and Solutions Enabler Virtual Appliance Arbitrary Command Execution Vulnerability
EMC Unisphere for VMAX Virtual Appliance and Solutions Enabler Virtual Appliance are both products of EMC. The former is a set of VMAX virtual storage series of management equipment, the latter is a set of solutions application virtual appliance. vApp Managers web application is one of the Web...
CVE-2016-6646
The vApp Managers web application in EMC Unisphere for VMAX Virtual Appliance 8.x before 8.3.0 and Solutions Enabler Virtual Appliance 8.x before 8.3.0 allows remote attackers to execute arbitrary code via crafted input to the 1 GetSymmCmdRequest or 2 RemoteServiceHandler class...
EMC Unisphere for VMAX vApp Manager Arbitrary File Write Vulnerability
EMC Unisphere for VMAX is a set of management interfaces for the VMAX storage family from EMC Corporation USA. An arbitrary file write vulnerability exists in the HTTP servlet in vApp Manager in EMC Unisphere for VMAX versions prior to 8.2.0, which can be exploited by a remote attacker to write...
CVE-2016-0889
An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remote attackers to write to arbitrary files via a crafted pathname...