3 matches found
CVE-2020-29489
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plaintext password storage vulnerability. A local authenticated attacker with access to system files can read a password file and use exposed credentials (including the Unisphere admin user) to gain access with the c...
CVE-2020-29490
Dell EMC Unity, Unity XT, and UnityVSA (versions prior to 5.0.4.0.5.012) expose a Denial of Service vulnerability on NAS servers with NFS exports. The issue allows a remote authenticated attacker to trigger a Storage Processor Panic by sending specially crafted UDP requests. The connected CNVD/CV...
CVE-2020-26199
Dell EMC Unity, Unity XT, and UnityVSA contain a plain-text password storage vulnerability in versions prior to 5.0.4.0.5.012. A local authenticated attacker with access to the log files can extract user credentials (including the Unisphere admin) and gain access with the compromised user’s privi...