Information disclosure

2023-01-1815:15:00

PRIOn knowledge base

www.prio-n.com

dell unisphere powermax vasa provider solution enabler vulnerability. remote attacker. arbitrary files.

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.6%

JSON

Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to read arbitrary files on the underlying file system.

CPENameOperatorVersion
emc_solutions_enabler_virtual_appliancelt9.2.3.6
emc_unisphere_for_powermaxge10.0.0.0
emc_unisphere_for_powermaxlt10.0.0.5
emc_unisphere_for_powermaxlt9.2.3.22
emc_unisphere_for_powermax_virtual_appliancelt9.2.3.22
emc_vasa_provider_virtual_appliancelt9.2.4.15
powermax_oseq5978
solutions_enablerge10.0.0.0
solutions_enablerlt10.0.0.5
solutions_enablerlt9.2.3.6

Name	Operator	Version
emc_solutions_enabler_virtual_appliance	lt	9.2.3.6
emc_unisphere_for_powermax	ge	10.0.0.0
emc_unisphere_for_powermax	lt	10.0.0.5
emc_unisphere_for_powermax	lt	9.2.3.22
emc_unisphere_for_powermax_virtual_appliance	lt	9.2.3.22
emc_vasa_provider_virtual_appliance	lt	9.2.4.15
powermax_os	eq	5978
solutions_enabler	ge	10.0.0.0
solutions_enabler	lt	10.0.0.5
solutions_enabler	lt	9.2.3.6

Rows per page:

1-10 of 121

References

www.dell.com/support/kbdoc/en-us/000207177/dsa-2022-340-dell-unisphere-for-powermax-dell-unisphere-for-powermax-vapp-dell-solutions-enabler-vapp-dell-unisphere-360-dell-vasa-provider-vapp-and-dell-powermax-emb-mgmt-security-update-for-multiple-vulnerabilities