CVE-2020-5356

Dell PowerProtect Data Manager (PPDM) versions prior to 19.4 and Dell PowerProtect X400 versions prior to 3.2 contain an improper authorization vulnerability. A remote authenticated malicious user may download any file from the affected PowerProtect virtual machines.
Configurations

Configuration 1 (hide)

cpe:2.3:a:dell:powerprotect_data_manager:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:dell:powerprotect_x400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:powerprotect_x400:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-07-06 18:15

Updated : 2024-02-28 17:47


NVD link : CVE-2020-5356

Mitre link : CVE-2020-5356

CVE.ORG link : CVE-2020-5356


JSON object : View

Products Affected

dell

  • powerprotect_data_manager
  • powerprotect_x400_firmware
  • powerprotect_x400
CWE
CWE-552

Files or Directories Accessible to External Parties

CWE-285

Improper Authorization