Lucene search

DellCVELIST:CVE-2022-34450

HistoryFeb 10, 2023 - 8:56 p.m.

CVE-2022-34450

2023-02-1020:56:32

CWE-183

dell

www.cve.org

powerpath management

appliance

version 3.3

privilege escalation

vulnerability

authenticated user

code execution

root control

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

13.2%

JSON

PowerPath Management Appliance with version 3.3 contains Privilege Escalation vulnerability. An authenticated admin user could potentially exploit this issue and gain unrestricted control/code execution on the system as root.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "PowerPath Management Appliance",
    "vendor": "Dell",
    "versions": [
      {
        "status": "affected",
        "version": "3.3"
      }
    ]
  }
]

References

www.dell.com/support/kbdoc/000205404

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

13.2%

JSON

Related for CVELIST:CVE-2022-34450