CVE-2022-45104 HIGH

CVE-2022-45104

Vendor Dell
Product Unisphere for PowerMax vApp
Weakness CWE-77
Published February 10, 2023
Last update March 24, 2025

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain a command execution vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands on the underlying system.

Key dates

02Disclosure timeline

February 10, 2023 CVE published
March 24, 2025 Record updated