First published: Tue Jun 23 2020(Updated: )
Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an authorization bypass vulnerability. An authenticated malicious user may potentially execute commands to alter or stop database statistics.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC Unisphere for PowerMax | <9.1.0.17 | |
Dell EMC Unisphere for PowerMax Virtual Appliance | <9.1.0.17 | |
Dell Powermax Os | =5978 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5345 is an authorization bypass vulnerability in Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978.
CVE-2020-5345 has a severity score of 5.4, which is considered medium.
CVE-2020-5345 can be exploited by an authenticated malicious user to execute commands to alter or stop data in Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17.
To fix CVE-2020-5345, upgrade to Dell EMC Unisphere for PowerMax versions 9.1.0.17 or later.
You can find more information about CVE-2020-5345 on the Dell support website at https://www.dell.com/support/security/en-us/details/544585/DSA-2020-065-Dell-EMC-Unisphere-for-PowerMax-Dell-EMC-Unisphere-for-PowerMax-Virtual-Appliance.