What is the vulnerability ID for this Dell EMC Unisphere for PowerMax vulnerability?

The vulnerability ID for this Dell EMC Unisphere for PowerMax vulnerability is CVE-2019-18588.

What is the severity of CVE-2019-18588?

The severity of CVE-2019-18588 is critical with a severity value of 5.4.

What is the CVE description of CVE-2019-18588?

CVE-2019-18588 is a Cross-Site Scripting (XSS) vulnerability in Dell EMC Unisphere for PowerMax and Dell EMC PowerMax OS, allowing an authenticated malicious user to potentially exploit the vulnerability.

Is there a reference for more information on CVE-2019-18588?

Yes, you can find more information on CVE-2019-18588 at the Dell EMC support website.

Vulnerability/
CVE-2019-18588

critical

CWE

10/1/2020

17/9/2024

CVE-2019-18588: XSS

Q: What is the affected software for CVE-2019-18588?

The affected software for CVE-2019-18588 includes Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479.

First published: Fri Jan 10 2020(Updated: )

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479 contain a Cross-Site Scripting (XSS) vulnerability. An authenticated malicious user may potentially exploit this vulnerability to inject javascript code and affect other authenticated users' sessions.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
Dell EMC PowerMax	=5978.221.221
Dell EMC PowerMax	=5978.479.479
Dell EMC Unisphere for PowerMax	<9.0.2.16
Dell EMC Unisphere for PowerMax	>=9.1.0.0<9.1.0.9

Never miss a vulnerability like this again

Reference Links

https://www.dell.com/support/security/en-us/details/539808/DSA-2019-193-Dell-EMC-Unisphere-for-PowerMax-and-Dell-EMC-PowerMax-Embedded-Management-Cross-Site

Frequently Asked Questions

What is the vulnerability ID for this Dell EMC Unisphere for PowerMax vulnerability?
The vulnerability ID for this Dell EMC Unisphere for PowerMax vulnerability is CVE-2019-18588.
What is the severity of CVE-2019-18588?
The severity of CVE-2019-18588 is critical with a severity value of 5.4.
What is the affected software for CVE-2019-18588?
The affected software for CVE-2019-18588 includes Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479.
What is the CVE description of CVE-2019-18588?
CVE-2019-18588 is a Cross-Site Scripting (XSS) vulnerability in Dell EMC Unisphere for PowerMax and Dell EMC PowerMax OS, allowing an authenticated malicious user to potentially exploit the vulnerability.
Is there a reference for more information on CVE-2019-18588?
Yes, you can find more information on CVE-2019-18588 at the Dell EMC support website.

collector/nvd-index
agent/author
agent/severity
agent/weakness
agent/type
agent/event
agent/softwarecombine
agent/first-publish-date
agent/references
agent/description
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/dell
canonical/dell emc powermax
version/dell emc powermax/5978.221.221
version/dell emc powermax/5978.479.479
canonical/dell emc unisphere for powermax
version/dell emc unisphere for powermax/9.1.0.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.