CVE-2020-29503

low-risk

Published 2021-07-19

Dell EMC PowerStore versions prior to 1.0.3.0.5.xxx contain a file permission Vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system directory.

Do I need to act?

-

0.05% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

4

CVSS 4.1/10 Medium

LOCAL / HIGH complexity

Affected Products (1)

Emc Powerstore

Affected Vendors

Dell

References (2)

Patch https://www.dell.com/support/kbdoc/000180775

Patch https://www.dell.com/support/kbdoc/000180775

16

/ 100

low-risk

Severity 11/34 · Low

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal