CVE-2020-5330

Dell EMC Networking X-Series firmware versions 3.0.1.2 and older, Dell EMC Networking PC5500 firmware versions 4.1.0.22 and older and Dell EMC PowerEdge VRTX Switch Modules firmware versions 2.0.0.77 and older contain an information disclosure vulnerability. A remote unauthenticated attacker could exploit this vulnerability to retrieve sensitive data by sending a specially crafted request to the affected endpoints.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dell:r1-2210_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:r1-2210:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:dell:r1-2401_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:r1-2401:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:dell:pc5500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:pc5500:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:dell:x1000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:x1000:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:dell:x4012_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:x4012:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:33

Type Values Removed Values Added
CVSS v2 : 5.0
v3 : 7.5
v2 : 5.0
v3 : 8.1
References () http://packetstormsecurity.com/files/171723/Cisco-Dell-Netgear-Information-Disclosure-Hash-Decrypter.html - Exploit, Third Party Advisory, VDB Entry () http://packetstormsecurity.com/files/171723/Cisco-Dell-Netgear-Information-Disclosure-Hash-Decrypter.html - Exploit, Third Party Advisory, VDB Entry
References () https://www.dell.com/support/article/en-us/sln320366/dsa-2020-042-dell-emc-networking-security-update-for-an-information-disclosure-vulnerability?lang=en - Vendor Advisory () https://www.dell.com/support/article/en-us/sln320366/dsa-2020-042-dell-emc-networking-security-update-for-an-information-disclosure-vulnerability?lang=en - Vendor Advisory

01 Feb 2024, 02:28

Type Values Removed Values Added
References (MISC) http://packetstormsecurity.com/files/171723/Cisco-Dell-Netgear-Information-Disclosure-Hash-Decrypter.html - (MISC) http://packetstormsecurity.com/files/171723/Cisco-Dell-Netgear-Information-Disclosure-Hash-Decrypter.html - Exploit, Third Party Advisory, VDB Entry

Information

Published : 2020-04-10 19:15

Updated : 2024-11-21 05:33


NVD link : CVE-2020-5330

Mitre link : CVE-2020-5330

CVE.ORG link : CVE-2020-5330


JSON object : View

Products Affected

dell

  • r1-2210
  • x4012
  • pc5500
  • r1-2401
  • x1000_firmware
  • r1-2401_firmware
  • r1-2210_firmware
  • pc5500_firmware
  • x4012_firmware
  • x1000
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor