CVE-2022-22564

Dell EMC Unity versions before 5.2.0.0.5.173 , use(es) broken cryptographic algorithm. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information.

Published: Feb 14, 2023
Updated: Nov 8, 2023
CVE: CVE-2022-22564
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.9
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-327

OWASP TOP 10:

A3 - Sensitive Data Exposure

Affected Software
References

Software	From	Fixed in
dell / emc_unity_operating_environment	-	5.2.0.0.5.173
dell / emc_unity_xt_operating_environment	-	5.2.0.0.5.173
dell / emc_unityvsa_operating_environment	-	5.2.0.0.5.173

https://www.dell.com/support/kbdoc/en-us/000199050/dsa-2022-021-dell-unity-dell-unityvsa-and-dell-unity-xt-security-update-for-multiple-vulnerabilities

Vulnerability Database

289,697

CVE-2022-22564