Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Unisphere for PowerMax, version(s) prior to 10.2.0.9 and PowerMax version(s) prior to PowerMax 9.2.4.15, contain an Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
LDAP查询中使用的特殊元素转义处理不恰当(LDAP注入)
Vulnerability Title
Dell Unisphere和Dell PowerMax 注入漏洞
Vulnerability Description
Dell Unisphere和Dell PowerMax都是美国戴尔(Dell)公司的产品。Dell Unisphere是一个 Dell EMC 为其存储系统(如Dell EMC Unity系列)提供的基于 Web 的管理平台。Dell PowerMax是一款企业级全闪存存储阵列。 Dell Unisphere 10.2.0.9之前版本和Dell PowerMax 9.2.4.15之前版本存在注入漏洞,该漏洞源于LDAP查询中特殊元素中和不当,可能导致脚本注入。
CVSS Information
N/A
Vulnerability Type
N/A