Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials (including the Unisphere admin privilege user) password is stored in a plain text in multiple log files. A local authenticated attacker with access to the log files may use the exposed password to gain access with the privileges of the compromised user.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
DELL Dell EMC Unity和UnityVSA 日志信息泄露漏洞
Vulnerability Description
是DELL Dell EMC Unity是美国戴尔(DELL)公司的一款统一存储阵列产品。DELL UnityVSA是美国戴尔(DELL)公司的一套虚拟Unity存储环境。 Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 存在安全漏洞,攻击者可利用该漏洞可以访问日志文件,可以使用暴露的密码获得被攻击用户的权限。
CVSS Information
N/A
Vulnerability Type
N/A