Security Advisory

CVE-2020-26199

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-05 21:40:22

Last updated 2024-09-16 20:17:54

Assigner dell

State PUBLISHED

Description

Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials (including the Unisphere admin privilege user) password is stored in a plain text in multiple log files. A local authenticated attacker with access to the log files may use the exposed password to gain access with the privileges of the compromised user.

← Browse all CVEs View on cve.org ↗