Critical severity9.8NVD Advisory· Published Nov 1, 2017· Updated May 13, 2026

CVE-2017-14375

Description

EMC Unisphere for VMAX Virtual Appliance (vApp) versions prior to 8.4.0.15, EMC Solutions Enabler Virtual Appliance versions prior to 8.4.0.15, EMC VASA Virtual Appliance versions prior to 8.4.0.512, and EMC VMAX Embedded Management (eManagement) versions prior to and including 1.4 (Enginuity Release 5977.1125.1125 and earlier) contain an authentication bypass vulnerability that may potentially be exploited by malicious users to compromise the affected system.

Affected products

Dell/Emc Unisphere
cpe:2.3:a:dell:emc_unisphere:*:*:*:*:*:vmax:*:*
Range: <8.4.0.15
EMC Corporation/Solutions Enabler
cpe:2.3:a:emc:solutions_enabler:*:*:*:*:*:*:*:*
Range: <8.4.0.15
EMC Corporation/Vasa
cpe:2.3:a:emc:vasa:*:*:*:*:*:*:*:*
Range: <8.4.0.512
EMC Corporation/Vmax Emanagement
cpe:2.3:a:emc:vmax_emanagement:*:*:*:*:*:*:*:*
Range: <=1.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2017/Oct/70nvdMailing ListThird Party Advisory
www.securityfocus.com/bid/101673nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1039704nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000