← back
CVE-2020-5389

CVE-2020-5389

CVSS 9 CRITICALEPSS 0.9%CWE-532
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Oct 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) for SCCM and SCVMM versions prior to 7.2.1 contain an information disclosure vulnerability. Authenticated low privileged OMIMSCC users may be able to retrieve sensitive information from the logs.
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Affected products
Dell · OMIMSSC (OpenManage Integration for Microsoft System Center)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.dell.com/support/article/en-de/sln322859/dsa-2020-224-dell-emc-openmanage-integration-for-microsoft-system-center-information-disclosure-vulnerability?lang=en