Dell EMC Unity and UnityVSA versions before 4.3.1.1525703027 contains an Authorization Bypass vulnerability. A remote authenticated user could potentially exploit this vulnerability to read files in NAS server by directly interacting with certain APIs of Unity OE, bypassing Role-Based Authorization control implemented only in Unisphere GUI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dell emc_unity_firmware |
||
dell emc unityvsa |