Vulnerabilities > Dell > EMC Unityvsa Operating Environment
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-14 | CVE-2022-22564 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell products Dell EMC Unity versions before 5.2.0.0.5.173 , use(es) broken cryptographic algorithm. | 5.9 |
| 2022-01-24 | CVE-2021-43589 | OS Command Injection vulnerability in Dell products Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. | 6.7 |
| 2021-07-12 | CVE-2021-21589 | Unspecified vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 do not exit on failed Initialization. | 6.7 |
| 2021-07-12 | CVE-2021-21590 | Insufficiently Protected Credentials vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. | 6.7 |
| 2021-07-12 | CVE-2021-21591 | Insufficiently Protected Credentials vulnerability in Dell products Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability. | 6.7 |
| 2020-02-06 | CVE-2020-5319 | Improper Validation of Array Index vulnerability in Dell products Dell EMC Unity, Dell EMC Unity XT, and Dell EMC UnityVSA versions prior to 5.0.2.0.5.009 contain a Denial of Service vulnerability on NAS Server SSH implementation that is used to provide SFTP service on a NAS server. | 7.5 |
| 2019-09-03 | CVE-2019-3754 | Cross-site Scripting vulnerability in Dell products Dell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions prior to 5.0.0.0.5.116 and Dell EMC VNXe3200 versions prior to 3.1.10.9946299 contain a reflected cross-site scripting vulnerability on the cas/logout page. | 6.1 |
| 2019-07-18 | CVE-2019-3741 | Protection Mechanism Failure vulnerability in Dell products Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain a plain-text password storage vulnerability. | 7.8 |
| 2019-07-18 | CVE-2019-3734 | Unspecified vulnerability in Dell products Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas configuration. | 4.3 |
| 2018-10-05 | CVE-2018-11064 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell products Dell EMC Unity OE versions 4.3.0.x and 4.3.1.x and UnityVSA OE versions 4.3.0.x and 4.3.1.x contains an Incorrect File Permissions vulnerability. | 7.8 |