Injection Vulnerability in Dell EMC OpenManage Enterprise (OME) and OpenManage Enterprise-Modular (OME-M) Allows Unauthorized Access and Denial-of-Service

Injection Vulnerability in Dell EMC OpenManage Enterprise (OME) and OpenManage Enterprise-Modular (OME-M) Allows Unauthorized Access and Denial-of-Service

CVE-2020-5323 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Dell EMC OpenManage Enterprise (OME) versions prior to 3.2 and OpenManage Enterprise-Modular (OME-M) versions prior to 1.10.00 contain an injection vulnerability. A remote authenticated malicious user with low privileges could potentially exploit this vulnerability to gain access to sensitive information or cause denial-of-service.

Learn more about our User Device Pen Test.