CVE-2020-5374

HIGH

Dell EMC OMIMSSC <7.2.1 - Info Disclosure

Title source: llm

Description

Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) for SCCM and SCVMM versions prior to 7.2.1 contain a hard-coded cryptographic key vulnerability. A remote unauthenticated attacker may exploit this vulnerability to gain access to the appliance data for remotely managed devices.

References (1)

[Vendor Advisory] https://www.dell.com/support/article/en-us/sln322169/dsa-2020-163-dell-emc-openmanage-integration-for-microsoft-system-center-multiple-vulnerabilities?lang=en

Scores

CVSS v3 8.8

EPSS 0.0040

EPSS Percentile 61.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

Details

CWE

CWE-798 CWE-256

Status published

Products (2)

dell/emc_omimssc_for_sccm < 7.2.1

dell/emc_omimssc_for_scvmm < 7.2.1

Published Jul 14, 2020

Tracked Since Feb 18, 2026