CVE-2020-5322
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-5322
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Dell EMC OpenManage Enterprise-Modular (OME-M) versions prior to 1.10.00 contain a command injection vulnerability. A remote authenticated malicious user with high privileges could potentially exploit the vulnerability to execute arbitrary shell commands on the affected system.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
DELL EMC OpenManage Enterprise-Modular 操作系统操作系统命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
DELL EMC OpenManage Enterprise-Modular是美国戴尔(DELL)公司的一个应用程序。 Dell EMC OpenManage Enterprise-Modular(OME-M)1.10.00之前版本中存在操作系统命令注入漏洞。远程攻击者可利用该漏洞在受影响的系统上执行任意Shell命令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Dell | Dell OpenManage Enterprise Modular | unspecified ~ 1.10 | - |
II. Public POCs for CVE-2020-5322
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-5322
Please Login to view more intelligence information
Same Patch Batch · Dell · 2021-07-19 · 8 CVEs total
| CVE-2020-5349 | 9.8 CRITICAL | Dell EMC Networking S4100 和 S5200 信任管理问题漏洞 |
| CVE-2020-5320 | 9.0 CRITICAL | DELL EMC OpenManage Enterprise和DELL EMC OpenManage Enterprise-Modular SQL注入漏洞 |
| CVE-2020-5315 | 8.8 HIGH | DELL EMC Repository Manager 安全漏洞 |
| CVE-2020-5321 | 7.6 HIGH | Dell EMC OpenManage Enterprise和OpenManage Enterprise-Modular 输入验证错误漏洞 |
| CVE-2020-29499 | 6.4 MEDIUM | Dell EMC PowerStore 操作系统命令注入漏洞 |
| CVE-2020-5323 | 5.4 MEDIUM | DELL EMC OpenManage Enterprise和DELL EMC OpenManage Enterprise-Modular 注入漏洞 |
| CVE-2020-29503 | 4.1 MEDIUM | Dell EMC PowerStore 安全漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-78
- CVE-2026-42454
Termix: OS Command Injection in Docker Container Management - CVE-2026-44656
Vim: OS Command Injection via 'path' completion - CVE-2026-42307
Vim: OS Command Injection in netrw - CVE-2026-41497
Incomplete fix for CVE-2026-34935: Command Injection in Merv - CVE-2022-50994
DrayTek Vigor 2960 < 1.5.1.4 OS Command Injection via mainfu
V. Comments for CVE-2020-5322
No comments yet