CVE-2022-31232 HIGH

CVE-2022-31232

Vendor Dell

Product Smart Fabric Storage Software

Weakness CWE-78

Published August 30, 2022

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

8.6/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

What the vulnerability does

01Description

SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access and perform actions on the affected system.

Key dates

02Disclosure timeline

August 30, 2022 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-31232

Related vulnerabilities

Identifiers

CVE CVE-2022-31232

CWE CWE-78

CVSS 8.6 / HIGH

Affected versions