CVE-2022-34367 MEDIUM

CVE-2022-34367

Vendor Dell
Product Data Protection Central
Weakness CWE-352 · CSRF
Published July 20, 2022
Last update September 16, 2024

CVSS base score

5.4/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

What the vulnerability does

01Description

Dell EMC Data Protection Central versions 19.1, 19.2, 19.3, 19.4, 19.5, 19.6, contain(s) a Cross-Site Request Forgery Vulnerability. A(n) remote unauthenticated attacker could potentially exploit this vulnerability, leading to processing of unintended server operations.

Key dates

02Disclosure timeline

July 20, 2022 CVE published
September 16, 2024 Record updated