First published: Thu Dec 17 2020(Updated: )
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. A user credentials (including the Unisphere admin privilege user) password is stored in a plain text in a system file. A local authenticated attacker with access to the system files may use the exposed password to gain access with the privileges of the compromised user.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC Unity Operating Environment | <5.0.4.0.5.012 | |
Dell Emc Unity Vsa Operating Environment | <5.0.4.0.5.012 | |
Dell Emc Unity Xt Operating Environment | <5.0.4.0.5.012 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.