CVE-2022-34397
Summary
| CVE | CVE-2022-34397 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-02-13 10:15:00 UTC |
| Updated | 2023-07-21 19:05:00 UTC |
| Description | Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 10.0.0.5 and below contains an authorization bypass vulnerability, allowing users to perform actions in which they are not authorized. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Dell | Evasa Provider Virtual Appliance | All | All | All | All |
| Application | Dell | Solutions Enabler Virtual Appliance | All | All | All | All |
| Application | Dell | Solutions Enabler Virtual Appliance | All | All | All | All |
| Application | Dell | Unisphere For Powermax Virtual Appliance | All | All | All | All |
| Application | Dell | Unisphere For Powermax Virtual Appliance | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Access Denied | MISC | www.dell.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.