CVE-2019-3734
First published: Thu Jun 27 2019(Updated: )
Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas configuration. A remote authenticated Unisphere Operator could potentially exploit this vulnerability to edit quota configuration of other users.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell EMC Unity Operating Environment | <5.0.0.0.5.116 | |
| Dell Emc Unityvsa Operating Environment | <5.0.0.0.5.116 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2019-3734.
What is the title of the vulnerability?
The title of the vulnerability is 'Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas configuration.'
How severe is CVE-2019-3734?
CVE-2019-3734 has a severity rating of 4.3 (Medium).
What software versions are affected by CVE-2019-3734?
Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 are affected by CVE-2019-3734.
How can an attacker exploit this vulnerability?
A remote authenticated Unisphere Operator could potentially exploit this vulnerability to edit quota configuration of other users.
- collector/nvd-index
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/tags
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell emc unity operating environment
- canonical/dell emc unityvsa operating environment