Design/Logic Flaw

2023-02-0106:15:00

PRIOn knowledge base

www.prio-n.com

dell vxrail

container escape

vulnerability

local attacker

arbitrary os commands

system takeover

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container’s underlying OS. Exploitation may lead to a system take over by an attacker.

CPENameOperatorVersion
vxrail_managerlt7.0.410

CPE	Name	Operator	Version
	vxrail_manager	lt	7.0.410

References

www.dell.com/support/kbdoc/000206943