Описание
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service (Storage Processor Panic) by sending specially crafted UDP requests.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.0.4.0.5.012 (исключая)Версия до 5.0.4.0.5.012 (исключая)Версия до 5.0.4.0.5.012 (исключая)
Одно из
cpe:2.3:a:dell:emc_unity_operating_environment:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_unity_vsa_operating_environment:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_unity_xt_operating_environment:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00543
Низкий
7.5 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-400
CWE-400
Связанные уязвимости
github
больше 3 лет назад
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. A remote authenticated attacker could potentially exploit this vulnerability and cause Denial of Service (Storage Processor Panic) by sending specially crafted UDP requests.
EPSS
Процентиль: 67%
0.00543
Низкий
7.5 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-400
CWE-400