CVE-2022-34456 HIGH

CVE-2022-34456

Vendor Dell Emc
Product Metro node
Weakness CWE-94 · Code injection
Published January 18, 2023
Last update April 3, 2025

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Dell EMC Metro node, Version(s) prior to 7.1, contain a Code Injection Vulnerability. An authenticated nonprivileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application.

Key dates

02Disclosure timeline

January 18, 2023 CVE published
April 3, 2025 Record updated