Unisphere For Powermax Security Vulnerabilities and Issues — Unisphere For Powermax CVE List

Lucene search

DellUnisphere For Powermax

10 matches found

CVE•added 2020/01/10 7:15 p.m.•109 views

CVE-2019-18588

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479 contain a Cross-Site Scripting (XSS) vulnerability. An authenticated malicious user may potentially exploit this vulnerabilit...

9CVSS5.2AI score0.00525EPSS

CVE•added 2021/04/30 9:15 p.m.•68 views

CVE-2021-21531

Dell Unisphere for PowerMax versions prior to 9.2.1.6 contain an Authorization Bypass Vulnerability. A local authenticated malicious user with monitor role may exploit this vulnerability to perform unauthorized actions.

8.1CVSS7.3AI score0.00145EPSS

CVE•added 2022/08/31 8:15 p.m.•56 views

CVE-2022-31233

Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to.

8CVSS8.1AI score0.00095EPSS

CVE•added 2022/01/21 9:15 p.m.•48 views

CVE-2021-36338

Unisphere for PowerMax versions prior to 9.2.2.2 contains a privilege escalation vulnerability. An adjacent malicious user could potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. CVE-2022-31233 addresses the partial fix in CVE...

8CVSS7.9AI score0.00111EPSS

CVE•added 2023/02/13 10:15 a.m.•47 views

CVE-2022-34397

Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 10.0.0.5 and below contains an authorization bypass vulnerability, allowing users to perform actions in which they are not authorized.

6.9CVSS5.6AI score0.00019EPSS

CVE•added 2024/03/28 7:15 p.m.•47 views

CVE-2024-25955

Dell vApp Manager, versions prior to 9.2.4.9 contain a Command Injection Vulnerability. An authorized attacker could potentially exploit this vulnerability leading to an execution of an inserted command. Dell recommends customers to upgrade at the earliest opportunity.

8.8CVSS7.2AI score0.00311EPSS

CVE•added 2021/01/05 10:15 p.m.•44 views

CVE-2020-35170

6.3CVSS5.2AI score0.00287EPSS

CVE•added 2025/04/07 2:15 p.m.•43 views

CVE-2025-27686

Dell Unisphere for PowerMax, version(s) prior to 10.2.0.9 and PowerMax version(s) prior to PowerMax 9.2.4.15, contain an Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this v...

2.7CVSS7.1AI score0.0006EPSS

CVE•added 2022/01/21 9:15 p.m.•36 views

CVE-2021-36339

The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.

7.8CVSS7.3AI score0.00148EPSS

CVE•added 2020/06/23 8:15 p.m.•32 views

CVE-2020-5345

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an authorization bypass vulnerability. An authenticated malicious user may potentially execute commands to alter or stop dat...

6.4CVSS5.7AI score0.00458EPSS