CVE-2020-5386

High

Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. A remote unauthenticated attacker can access the list…

dell·CWE-668·Published 2020-09-02

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

257 chars

Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. A remote unauthenticated attacker can access the list of DT (Directory Table) objects of all internally running services and gain knowledge of sensitive data of the system.

NVDen

257 chars

NVDes

293 chars

Dell EMC ECS, versiones anteriores a 3.5, contiene una vulnerabilidad de Exposición de Recursos. Un atacante remoto no autenticado puede acceder a la lista de objetos DT (Directory Table) de todos los servicios que se ejecutan internamente y lograr conocer los datos confidenciales del sistema

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.0	Primary	cve.org	8.1	—	—	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H