Privilege Escalation Vulnerability in Unisphere for PowerMax by Dell
CVE-2022-31233

6.3MEDIUM

Key Information:

Vendor: Dell
Status: Unisphere For Powermax
Vendor: CVE Published:; 27 June 2022

What is CVE-2022-31233?

Unisphere for PowerMax prior to version 9.2.3.15 has a vulnerability that allows an adjacent malicious user to exploit insufficient access control mechanisms. By leveraging this flaw, the attacker could escalate their privileges, gaining unauthorized access to restricted functionalities that should otherwise be unavailable to them.

Affected Version(s)

Unisphere for PowerMax < 9.2.3.15

References

https://www.dell.com/support/kbdoc/000200975

x_refsource_MISC

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 27, 2022
Vulnerability Reserved
May 19, 2022