HIGH🇵🇱 Wersja polska

CVE-2022-34446

CVSS 8.8v3.1pub. 2023-02-11upd. 2024-11-21

PowerPath Management Appliance with versions 3.3 & 3.2* contains Authorization Bypass vulnerability. An authenticated remote user with limited privileges (e.g., of role Monitoring) can exploit this issue and gain access to sensitive information, and modify the configuration.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Dell Powerpath Management Appliance

    APP
    Dell
    3.23.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-34447HIGH7.2ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerabili...

CVE-2022-34448HIGH8.8ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vul...

CVE-2021-43587HIGH8.2ten sam produkt

Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic ke...

CVE-2022-34449MEDIUM6.0ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2* contains a Hardcoded Cryptographic Keys vulnerability...

CVE-2022-34450MEDIUM6.7ten sam produkt

PowerPath Management Appliance with version 3.3 contains Privilege Escalation vulnerability. An authenticated...