CVE-2020-5372

HIGH

Dell EMC PowerStore < 1.0.1.0.5.002 - Unauthenticated Denial of Service via Exposed Test Interface Ports

Title source: llm

Description

Dell EMC PowerStore versions prior to 1.0.1.0.5.002 contain a vulnerability that exposes test interface ports to external network. A remote unauthenticated attacker could potentially cause Denial of Service via test interface ports which are not used during run time environment.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.dell.com/support/security/en-us/details/544738/DSA-2020-159-Dell-EMC-PowerStore-Family-Improper-Authorization-Vulnerability

Scores

CVSS v3 8.6

EPSS 0.0066

EPSS Percentile 71.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Details

CWE

CWE-1244 CWE-863

Status published

Products (5)

dell/emc_powerstore_1000_firmware < 1.0.1.0.5.002

dell/emc_powerstore_3000_firmware < 1.0.1.0.5.002

dell/emc_powerstore_5000_firmware < 1.0.1.0.5.002

dell/emc_powerstore_7000_firmware < 1.0.1.0.5.002

dell/emc_powerstore_9000_firmware < 1.0.1.0.5.002

Published Jul 06, 2020

Tracked Since Feb 18, 2026