Home
HIGH: 7.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:NDefault status
unaffected
Any version before 5.1.0.1 or later
affected
Any version before 4.5.5.2 or later
affected
Description
Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure, Information tampering, and Unauthorized access.
Problem types
CWE-287: Improper Authentication
Product status
Any version before 5.1.0.1 or later
Any version before 4.5.5.2 or later
Credits
Dell would like to thank brocked200 for reporting this issue.
References
www.dell.com/...-powerflex-software-multiple-vulnerabilities