Dell Emc Unity Operating Environment — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Emc Unity Operating Environment, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (24)
CVE-2018-1183 — CVSS 9.8 (critical): In Dell EMC Unisphere for VMAX Virtual Appliance versions prior to 8.4.0.8, Dell EMC Solutions Enabler Virtual Appliance versions prior to…
CVE-2021-36294 — CVSS 9.8 (critical): Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability. A remote unauthenticated attacker…
CVE-2021-36288 — CVSS 8.6 (high): Dell VNX2 for File version 8.1.21.266 and earlier, contain a path traversal vulnerability which may lead unauthenticated users to…
CVE-2021-36289 — CVSS 7.8 (high): Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain a sensitive information disclosure vulnerability. A local malicious user may…
CVE-2019-3741 — CVSS 7.8 (high): Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain a plain-text password storage vulnerability. A Unisphere user’s…
CVE-2018-11064 — CVSS 7.8 (high): Dell EMC Unity OE versions 4.3.0.x and 4.3.1.x and UnityVSA OE versions 4.3.0.x and 4.3.1.x contains an Incorrect File Permissions…
CVE-2020-29490 — CVSS 7.5 (high): Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS…
CVE-2020-5319 — CVSS 7.5 (high): Dell EMC Unity, Dell EMC Unity XT, and Dell EMC UnityVSA versions prior to 5.0.2.0.5.009 contain a Denial of Service vulnerability on NAS…
CVE-2021-36287 — CVSS 7.3 (high): Dell VNX2 for file version 8.1.21.266 and earlier, contain an unauthenticated remote code execution vulnerability which may lead…
CVE-2021-36296 — CVSS 7.2 (high): Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authenticated remote code execution vulnerability. A remote malicious…
CVE-2018-1239 — CVSS 7.2 (high): Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities…
CVE-2021-36295 — CVSS 7.2 (high): Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authenticated remote code execution vulnerability. A remote malicious…
CVE-2021-21590 — CVSS 6.4 (medium): Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. A local…
CVE-2020-26199 — CVSS 6.4 (medium): Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user…
CVE-2020-29489 — CVSS 6.4 (medium): Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. A user…
CVE-2021-21591 — CVSS 6.4 (medium): Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. A local…
CVE-2021-36290 — CVSS 6.4 (medium): Dell VNX2 for File version 8.1.21.266 and earlier, contain a privilege escalation vulnerability. A local malicious admin may potentially…
CVE-2021-36293 — CVSS 6.4 (medium): Dell VNX2 for File version 8.1.21.266 and earlier, contain a privilege escalation vulnerability. A local malicious admin may potentially…
CVE-2021-43589 — CVSS 6.0 (medium): Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection…
CVE-2022-22564 — CVSS 5.9 (medium): Dell EMC Unity versions before 5.2.0.0.5.173 , use(es) broken cryptographic algorithm. A remote unauthenticated attacker could potentially…
CVE-2021-21589 — CVSS 5.7 (medium): Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 do not exit on failed Initialization. A local authenticated Service…
CVE-2019-3734 — CVSS 5.4 (medium): Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas…
CVE-2019-3754 — CVSS 4.7 (medium): Dell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions prior to 5.0.0.0.5.116 and Dell EMC…
CVE-2018-1246 — CVSS 4.7 (medium): Dell EMC Unity and UnityVSA contains reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially…