100 matches found
CVE-2021-21591
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. A local malicious user with high privileges may use the exposed password to gain access with the privileges of the compromised user...
CVE-2021-21591
CVE-2021-21591 affects Dell EMC Unity, Unity XT, and UnityVSA. The issue is a plain-text password storage vulnerability in versions prior to 5.1.0.0.5.394. A local high-privilege attacker could leverage an exposed password to access the system with the compromised user’s privileges. Exploitation ...
CVE-2021-21590
CVE-2021-21590 affects Dell EMC Unity, Unity XT, and UnityVSA (pre-5.1.0.0.5.394). The issue is a plain-text password storage vulnerability in the product’s local authentication data. A local, high-privilege attacker can use an exposed password to access the system with the compromised user’s pri...
CVE-2021-21589
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 do not exit on failed Initialization. A local authenticated Service user could potentially exploit this vulnerability to escalate privileges...
CVE-2021-21589
The CVE affects Dell EMC Unity, Unity XT, and UnityVSA prior to 5.1.0.0.5.394, where the system does not exit on failed Initialization. A local authenticated Service user could potentially escalate privileges, giving partial confidentiality/integrity/availability impact. Vulnerable component: ini...
DELL Dell EMC Unity和UnityVSA 安全漏洞
DELL Dell EMC Unity and UnityVSA are both products of Dell DELL Corporation, U.S.A. Dell EMC Unity is a unified storage array product.UnityVSA is a set of virtual Unity storage environments. A security vulnerability exists in Dell EMC Unity, Unity XT, and UnityVSA that stems from Dell EMC Unity,...
DELL Dell EMC Unity和UnityVSA 信息泄露漏洞
DELL Dell EMC Unity and UnityVSA are both products of Dell DELL Corporation, U.S.A. Dell EMC Unity is a unified storage array product.UnityVSA is a suite of virtual Unity storage environments. A security vulnerability exists in Dell EMC Unity, Unity XT, and UnityVSA that stems from a plaintext...
CVE-2021-21547
Dell EMC Unity, UnityVSA, and Unity XT versions prior to 5.0.7.0.5.008 contain a plain-text password storage vulnerability when the Dell Upgrade Readiness Utility is run on the system. The credentials of the Unisphere Administrator are stored in plain text. A local malicious user with high...
CVE-2021-21547
Dell EMC Unity, UnityVSA, and Unity XT versions prior to 5.0.7.0.5.008 expose Unisphere Administrator credentials in plain text when the Dell Upgrade Readiness Utility runs. The vulnerability is local: a high-privilege attacker could use the exposed password to access the system with the compromi...
Dell EMC Unity,UnityVSA和Unity XT 安全漏洞
DELL Dell EMC Unity and UnityVSA are both products of Dell DELL Corporation, U.S.A. Dell EMC Unity is a unified storage array product.UnityVSA is a set of virtual Unity storage environments. A security vulnerability exists in versions prior to Dell EMC Unity, UnityVSA, and Unity XT 5.0.7.0.5.008...
Dell EMC Unity and UnityVSA Information Disclosure Vulnerability
Dell EMC Unity is a unified storage array product. the UnityVSA is a set of virtual Unity storage environments. An information disclosure vulnerability exists in Dell EMC Unity, Unity XT and UnityVSA versions prior to 5.0.4.0.5.012. The vulnerability stems from the program storing user credential...
Dell EMC Unity and UnityVSA Denial of Service Vulnerabilities
Dell EMC Unity and UnityVSA are both products of Dell DELL, U.S.A. Dell EMC Unity is a unified storage array product.UnityVSA is a set of virtual Unity storage environments. A denial of service vulnerability exists in Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012, which c...
CVE-2020-26199
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials including the Unisphere admin privilege user password is stored in a plain text in multiple log files. A local authenticated attacker with access to the l...
CVE-2020-29490
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service Storage Processor Panic by sending specially...
CVE-2020-26199
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials including the Unisphere admin privilege user password is stored in a plain text in multiple log files. A local authenticated attacker with access to the l...
Default credentials
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials including the Unisphere admin privilege user password is stored in a plain text in multiple log files. A local authenticated attacker with access to the l...
Denial of service
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service Storage Processor Panic by sending specially...
CVE-2020-29490
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service Storage Processor Panic by sending specially...
CVE-2020-29490
Dell EMC Unity, Unity XT, and UnityVSA (versions prior to 5.0.4.0.5.012) expose a Denial of Service vulnerability on NAS servers with NFS exports. The issue allows a remote authenticated attacker to trigger a Storage Processor Panic by sending specially crafted UDP requests. The connected CNVD/CV...
CVE-2020-29489
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. A user credentials including the Unisphere admin privilege user password is stored in a plain text in a system file. A local authenticated attacker with access to the syste...