CVE-2022-34363

Summary

Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the  Unisphere for VMAX application running in vApp

Affected Software

VendorProductVersion RangeStatus
DellUnisphere for PowerMax0 < 10.0.0.5 EEM: 10.0.0.968affected
DellUnisphere for PowerMax0 < 9.2.3.22 EEM: 9.2.4.26affected
DellUnisphere for PowerMax Virtual Appliance0 < 9.2.3.22 EEM: 9.2.4.26affected
DellUnisphere 3600 < 9.2.3.12affected

Weaknesses

  • CWE-285: CWE-285: Improper Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References