Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell EMC PV ME5, versions ME5.1.0.0.0 and ME5.1.0.1.0, contains a Client-side desync Vulnerability. An unauthenticated attacker could potentially exploit this vulnerability to force a victim's browser to desynchronize its connection with the website, typically leading to XSS and DoS.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
HTTP请求的解释不一致性(HTTP请求私运)
Vulnerability Title
Dell MEC PV ME5 环境问题漏洞
Vulnerability Description
Dell MEC PV ME5是美国戴尔(Dell)公司的一款专为价格敏感的 SAN 和 DAS 环境构建和优化的入门级块存储阵列。 Dell EMC PV ME5.1.0.0.0版本和ME5.1.0.1.0版本存在安全漏洞。攻击者利用该漏洞迫使受害者的浏览器取消与网站的连接同步,从而导致跨站脚本和拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A