CVE-2022-32481

Summary

Dell PowerProtect Cyber Recovery, versions prior to 19.11, contain a privilege escalation vulnerability on virtual appliance deployments. A lower-privileged authenticated user can chain docker commands to escalate privileges to root leading to complete system takeover.

Affected Software

VendorProductVersion RangeStatus
DellCyber Recoveryunspecified < 19.11affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References