Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Powermax_os
(Dell)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 16 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-12-14 | CVE-2023-48660 | Dell vApp Manger, versions prior to 9.2.4.x contain an arbitrary file read vulnerability. A remote attacker could potentially exploit this vulnerability to read arbitrary files from the target system. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 7.5 | ||
| 2023-12-14 | CVE-2023-48661 | Dell vApp Manager, versions prior to 9.2.4.x contain an arbitrary file read vulnerability. A remote malicious user with high privileges could potentially exploit this vulnerability to read arbitrary files from the target system. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 4.9 | ||
| 2023-12-14 | CVE-2023-48662 | Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. A remote malicious user with high privileges could potentially exploit this vulnerability leading to the execution of arbitrary OS commands on the affected system. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 7.2 | ||
| 2023-12-14 | CVE-2023-48663 | Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. A remote malicious user with high privileges could potentially exploit this vulnerability leading to the execution of arbitrary OS commands on the affected system. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 7.2 | ||
| 2023-12-14 | CVE-2023-48664 | Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. A remote malicious user with high privileges could potentially exploit this vulnerability leading to the execution of arbitrary OS commands on the affected system. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 7.2 | ||
| 2023-12-14 | CVE-2023-48665 | Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. A remote malicious user with high privileges could potentially exploit this vulnerability leading to the execution of arbitrary OS commands on the affected system. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 7.2 | ||
| 2023-12-14 | CVE-2023-48671 | Dell vApp Manager, versions prior to 9.2.4.x contain an information disclosure vulnerability. A remote attacker could potentially exploit this vulnerability leading to obtain sensitive information that may aid in further attacks. | Powermax_os, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 7.5 | ||
| 2020-06-23 | CVE-2020-5367 | Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim's data in transit. | Emc_unisphere_for_powermax, Emc_unisphere_for_powermax_virtual_appliance, Powermax_os | 8.1 | ||
| 2023-01-18 | CVE-2022-45103 | Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to read arbitrary files on the underlying file system. | Emc_solutions_enabler_virtual_appliance, Emc_unisphere_for_powermax, Emc_unisphere_for_powermax_virtual_appliance, Emc_vasa_provider_virtual_appliance, Powermax_os, Solutions_enabler, Unisphere_360, Vasa_provider | 6.5 | ||
| 2023-03-17 | CVE-2021-21548 | Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim’s data in transit. | Emc_unisphere_for_powermax, Emc_unisphere_for_powermax_virtual_appliance, Powermax_os | 7.4 |