CVE-2020-5389

MEDIUM

Dell Emc Openmanage Integration For M... - Log Information Exposure

Title source: rule

Description

Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) for SCCM and SCVMM versions prior to 7.2.1 contain an information disclosure vulnerability. Authenticated low privileged OMIMSCC users may be able to retrieve sensitive information from the logs.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.dell.com/support/article/en-de/sln322859/dsa-2020-224-dell-emc-openmanage-integration-for-microsoft-system-center-information-disclosure-vulnerability?lang=en

Scores

CVSS v3 6.5

EPSS 0.0034

EPSS Percentile 56.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-532

Status published

Products (1)

dell/emc_openmanage_integration_for_microsoft_system_center < 7.2.1 (2 CPE variants)

Published Oct 08, 2020

Tracked Since Feb 18, 2026