CVE-2020-29490
First published: Tue Jan 05 2021(Updated: )
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service (Storage Processor Panic) by sending specially crafted UDP requests.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell EMC Unity Operating Environment | <5.0.4.0.5.012 | |
| Dell Emc Unity Vsa Operating Environment | <5.0.4.0.5.012 | |
| Dell Emc Unity Xt Operating Environment | <5.0.4.0.5.012 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-29490?
The severity of CVE-2020-29490 is rated as high with a CVSS score of 6.5.
How can an attacker exploit CVE-2020-29490 vulnerability?
A remote authenticated attacker could potentially exploit CVE-2020-29490 by sending specially crafted packets to cause Denial of Service (Storage Processor Panic).
Is there a fix available for CVE-2020-29490?
Yes, updating Dell EMC Unity, Unity XT, and UnityVSA to version 5.0.4.0.5.012 or higher fixes the vulnerability.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/dell
- canonical/dell emc unity operating environment
- canonical/dell emc unity vsa operating environment
- canonical/dell emc unity xt operating environment