Vulnerability Description
Dell EMC PowerStore versions prior to 1.0.1.0.5.002 contain a vulnerability that exposes test interface ports to external network. A remote unauthenticated attacker could potentially cause Denial of Service via test interface ports which are not used during run time environment.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Emc Powerstore 1000 Firmware | < 1.0.1.0.5.002 |
| Dell | Emc Powerstore 1000 | - |
| Dell | Emc Powerstore 3000 Firmware | < 1.0.1.0.5.002 |
| Dell | Emc Powerstore 3000 | - |
| Dell | Emc Powerstore 5000 Firmware | < 1.0.1.0.5.002 |
| Dell | Emc Powerstore 5000 | - |
| Dell | Emc Powerstore 7000 Firmware | < 1.0.1.0.5.002 |
| Dell | Emc Powerstore 7000 | - |
| Dell | Emc Powerstore 9000 Firmware | < 1.0.1.0.5.002 |
| Dell | Emc Powerstore 9000 | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/security/en-us/details/544738/DSA-2020-159-Dell-EMCVendor Advisory
- https://www.dell.com/support/security/en-us/details/544738/DSA-2020-159-Dell-EMCVendor Advisory
FAQ
What is CVE-2020-5372?
CVE-2020-5372 is a vulnerability with a CVSS score of 8.6 (HIGH). Dell EMC PowerStore versions prior to 1.0.1.0.5.002 contain a vulnerability that exposes test interface ports to external network. A remote unauthenticated attacker could potentially cause Denial of S...
How severe is CVE-2020-5372?
CVE-2020-5372 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-5372?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Emc Powerstore 1000 Firmware, Dell Emc Powerstore 1000, Dell Emc Powerstore 3000 Firmware, Dell Emc Powerstore 3000, Dell Emc Powerstore 5000 Firmware.