HIGH✓ PATCH🇬🇧 English

CVE-2020-5330

CVSS 8.1v3.1pub. 2020-04-10upd. 2024-11-21

Dell EMC Networking X-Series firmware versions 3.0.1.2 and older, Dell EMC Networking PC5500 firmware versions 4.1.0.22 and older and Dell EMC PowerEdge VRTX Switch Modules firmware versions 2.0.0.77 and older contain an information disclosure vulnerability. A remote unauthenticated attacker could exploit this vulnerability to retrieve sensitive data by sending a specially crafted request to the affected endpoints.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dell Pc5500

    HW
    Dell
    wszystkie wersje
  • Dell Pc5500 Firmware

    OS
    Dell
    ≤ 4.1.0.22
  • Dell R1 2210

    HW
    Dell
    wszystkie wersje
  • Dell R1 2210 Firmware

    OS
    Dell
    ≤ 3.0.1.2
  • Dell R1 2401

    HW
    Dell
    wszystkie wersje
  • Dell R1 2401 Firmware

    OS
    Dell
    ≤ 3.0.1.2
  • Dell X1000

    HW
    Dell
    wszystkie wersje
  • Dell X1000 Firmware

    OS
    Dell
    ≤ 2.0.0.77
  • Dell X4012

    HW
    Dell
    wszystkie wersje
  • Dell X4012 Firmware

    OS
    Dell
    ≤ 2.0.0.77
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2021-36320HIGH7.5ten sam produkt

Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an authentication bypass vulnerability. A ...

CVE-2021-36321HIGH7.5ten sam produkt

Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an improper input validation vulnerability...

CVE-2021-21507HIGH8.8ten sam produkt

Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX Switch Module firm...

CVE-2021-36322MEDIUM6.1ten sam produkt

Dell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection vulnerability. A r...

CVE-2026-22769CRITICAL10.0⚠ KEVPL ✓ten sam vendor

Dell RecoverPoint for VMs — zahardkodowane dane uwierzytelniające (RCE, root)