CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-29502
https://notcve.org/view.php?id=CVE-2020-29502
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments. A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account. Dell EMC PowerStore versiones anteriores a 1.0.3.0.5.007, contienen una vulnerabilidad de Almacenamiento de Contraseña de Texto Plano en entornos PowerStore X & T. Un atacante autenticado localmente podría potencialmente explotar esta vulnerabilidad, conllevando a la divulgación de determinadas credenciales de usuario. • https://www.dell.com/support/kbdoc/000180775 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2020-29501
https://notcve.org/view.php?id=CVE-2020-29501
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments. A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account. Dell EMC PowerStore versiones anteriores a 1.0.3.0.5.007, contienen una vulnerabilidad de Almacenamiento de Contraseña de Texto Plano en entornos PowerStore X & T. Un atacante autenticado localmente podría potencialmente explotar esta vulnerabilidad, conllevando a la divulgación de determinadas credenciales de usuario. • https://www.dell.com/support/kbdoc/000180775 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-29500
https://notcve.org/view.php?id=CVE-2020-29500
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore T environments. A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account. Dell EMC PowerStore versiones anteriores a 1.0.3.0.5.007, contienen una vulnerabilidad de Almacenamiento de Contraseña de Texto Plano en entornos PowerStore T. Un atacante autenticado localmente podría potencialmente explotar esta vulnerabilidad, conllevando a la divulgación de determinadas credenciales de usuario. • https://www.dell.com/support/kbdoc/000180775 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 8.6EPSS: 0%CPEs: 10EXPL: 0CVE-2020-5372
https://notcve.org/view.php?id=CVE-2020-5372
Dell EMC PowerStore versions prior to 1.0.1.0.5.002 contain a vulnerability that exposes test interface ports to external network. A remote unauthenticated attacker could potentially cause Denial of Service via test interface ports which are not used during run time environment. Dell EMC PowerStore versiones anteriores a 1.0.1.0.5.002, contiene una vulnerabilidad que expone los puertos de interfaz de prueba hacia una red externa. Un atacante no autenticado remoto podría causar una denegación de servicio por medio de puertos de interfaz de prueba que no son utilizados durante el entorno del tiempo de ejecución • https://www.dell.com/support/security/en-us/details/544738/DSA-2020-159-Dell-EMC-PowerStore-Family-Improper-Authorization-Vulnerability • CWE-863: Incorrect Authorization CWE-1244: Internal Asset Exposed to Unsafe Debug Access Level or State •