Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Unisphere_for_powermax_virtual_appliance
(Dell)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 15 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-03-28 | CVE-2024-25946 | Dell vApp Manager, versions prior to 9.2.4.9 contain a Command Injection Vulnerability. An authorized attacker could potentially exploit this vulnerability leading to an execution of an inserted command. Dell recommends customers to upgrade at the earliest opportunity. | Powermax_eem, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 8.8 | ||
| 2024-03-28 | CVE-2024-25955 | Dell vApp Manager, versions prior to 9.2.4.9 contain a Command Injection Vulnerability. An authorized attacker could potentially exploit this vulnerability leading to an execution of an inserted command. Dell recommends customers to upgrade at the earliest opportunity. | Powermax_eem, Solutions_enabler_virtual_appliance, Unisphere_for_powermax_virtual_appliance | 8.8 | ||
| 2021-04-30 | CVE-2021-21531 | Dell Unisphere for PowerMax versions prior to 9.2.1.6 contain an Authorization Bypass Vulnerability. A local authenticated malicious user with monitor role may exploit this vulnerability to perform unauthorized actions. | Powermax_os, Solutions_enabler, Solutions_enabler_virtual_appliance, Unisphere_for_powermax, Unisphere_for_powermax_virtual_appliance | 7.8 | ||
| 2022-01-21 | CVE-2021-36338 | Unisphere for PowerMax versions prior to 9.2.2.2 contains a privilege escalation vulnerability. An adjacent malicious user could potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. CVE-2022-31233 addresses the partial fix in CVE-2021-36338. | Powermax_os, Solutions_enabler, Solutions_enabler_virtual_appliance, Unisphere_360, Unisphere_for_powermax, Unisphere_for_powermax_virtual_appliance, Vasa | 8.0 | ||
| 2022-01-21 | CVE-2021-36339 | The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance. | Powermax_os, Solutions_enabler, Solutions_enabler_virtual_appliance, Unisphere_360, Unisphere_for_powermax, Unisphere_for_powermax_virtual_appliance, Vasa | 7.8 |