Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Unity prior to 5.3 contains a 'man in the middle' vulnerability in the vmadapter component. If a customer has a certificate signed by a third-party public Certificate Authority, the vCenter CA could be spoofed by an attacker who can obtain a CA-signed certificate.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
证书验证不恰当
Vulnerability Title
Dell Unity 安全漏洞
Vulnerability Description
Dell Unity是美国戴尔(Dell)公司的一套虚拟Unity存储环境。 Dell Unity 5.3之前版本存在安全漏洞,该漏洞源于vmadapter组件存在中间人欺骗漏洞。可获得CA签名证书的攻击者可利用该漏洞欺骗vCenter CA。
CVSS Information
N/A
Vulnerability Type
N/A