Authorization Bypass in Dell Unisphere for PowerMax vApp
CVE-2022-34363

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Unisphere For Powermax; Unisphere For Powermax Virtual Appliance; Unisphere 360
Vendor: CVE Published:; 22 May 2026

What is CVE-2022-34363?

Dell Unisphere for PowerMax vApp prior to version 10.0.0.2 contains an authorization bypass vulnerability that could allow an attacker to gain unauthorized access to sensitive functionalities of the application, jeopardizing the integrity and confidentiality of the managed storage systems.

Affected Version(s)

Unisphere 360 0 < 9.2.3.12

Unisphere for PowerMax 0 < 10.0.0.5 EEM: 10.0.0.968

Unisphere for PowerMax 0 < 9.2.3.22 EEM: 9.2.4.26

References

https://dellservices.lightning.force.com/lightning/r/Ligh...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 22, 2026
Vulnerability Reserved
Jun 23, 2022

CVE-2022-34363 Data

JSON