CVE-2022-31233

Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to.

Published: Aug 31, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-31233
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8
AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-669

Affected Software
References

Software	From	Fixed in
dell / powermax_os	5978	5978.x
dell / unisphere_for_powermax	-	9.2.3.15
dell / unisphere_for_powermax_virtual_appliance	-	9.2.3.15
dell / unisphere_360	-	9.2.3.6
dell / solutions_enabler	-	9.2.3.4
dell / solutions_enabler_virtual_appliance	-	9.2.3.4
dell / evasa_provider_virtual_appliance	-	9.2.3.7
dell / vasa	-	9.2.3.15

https://www.dell.com/support/kbdoc/000200975

Vulnerability Database

289,599

CVE-2022-31233