Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2017-14374
PUBLISHED
More InfoOfficial Page
Assigner-dell
Assigner Org ID-c550e75a-17ff-4988-97f0-544cde3820fe
View Known Exploited Vulnerability (KEV) details
Published At-06 Dec, 2017 | 00:00
Updated At-05 Aug, 2024 | 19:27
Rejected At-
▼CVE Numbering Authority (CNA)

The SMI-S service in Dell Storage Manager versions earlier than 16.3.20 (aka 2016 R3.20) is protected using a hard-coded password. A remote user with the knowledge of the password might potentially disable the SMI-S service via HTTP requests, affecting storage management and monitoring functionality via the SMI-S interface. This issue, aka DSM-30415, only affects a Windows installation of the Data Collector (not applicable to the virtual appliance).

Affected Products
Vendor
n/a
Product
Dell Storage Manager 2016 Dell Storage Manager versions earlier than 16.3.20
Versions
Affected
  • Dell Storage Manager 2016 Dell Storage Manager versions earlier than 16.3.20
Problem Types
TypeCWE IDDescription
textN/AHard-coded Password Vulnerability
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://topics-cdn.dell.com/pdf/storage-sc2000_release%20notes24_en-us.pdf
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://topics-cdn.dell.com/pdf/storage-sc2000_release%20notes24_en-us.pdf
x_refsource_CONFIRM
x_transferred
Details not found