PT-2020-18433 · Dell Emc · Dell Emc Vxrail

Published

2020-07-06

Updated

2020-07-13

CVE-2020-5368

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell EMC VxRail versions 4.7.410 and 4.7.411

Description The issue is related to an improper authentication vulnerability. A remote unauthenticated attacker may exploit this to obtain sensitive information in an encrypted form.

Recommendations For versions 4.7.410 and 4.7.411, update to a version that contains a fix for this issue to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2020-5368

Affected Products

Dell Emc Vxrail

PT-2020-18433 · Dell Emc · Dell Emc Vxrail

CVE-2020-5368

Weakness Enumeration

Related Identifiers

Affected Products

References · 4