Vulnerabilities > Dell > EMC Unity Operating Environment
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-12 | CVE-2021-21589 | Unspecified vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 do not exit on failed Initialization. | 6.7 |
| 2021-07-12 | CVE-2021-21590 | Insufficiently Protected Credentials vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. | 6.7 |
| 2021-07-12 | CVE-2021-21591 | Insufficiently Protected Credentials vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. | 6.7 |
| 2021-01-05 | CVE-2020-29490 | Resource Exhaustion vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports. | 6.5 |
| 2021-01-05 | CVE-2020-29489 | Cleartext Storage of Sensitive Information vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. | 6.7 |
| 2021-01-05 | CVE-2020-26199 | Information Exposure Through Log Files vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. | 6.7 |
| 2020-02-06 | CVE-2020-5319 | Improper Validation of Array Index vulnerability in Dell products Dell EMC Unity, Dell EMC Unity XT, and Dell EMC UnityVSA versions prior to 5.0.2.0.5.009 contain a Denial of Service vulnerability on NAS Server SSH implementation that is used to provide SFTP service on a NAS server. | 7.5 |
| 2019-09-03 | CVE-2019-3754 | Cross-site Scripting vulnerability in Dell products Dell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions prior to 5.0.0.0.5.116 and Dell EMC VNXe3200 versions prior to 3.1.10.9946299 contain a reflected cross-site scripting vulnerability on the cas/logout page. | 6.1 |
| 2019-07-18 | CVE-2019-3741 | Protection Mechanism Failure vulnerability in Dell products Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain a plain-text password storage vulnerability. | 7.8 |
| 2019-07-18 | CVE-2019-3734 | Unspecified vulnerability in Dell products Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas configuration. | 4.3 |