Critical
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-26857 | Dell OpenManage Enterprise versions 3.8.3 and earlier contain an improper authorization vulnerability. A remote authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass blocked functionalities and perform unauthorized actions. | 9.0 | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-26857 | Dell OpenManage Enterprise versions 3.8.3 and earlier contain an improper authorization vulnerability. A remote authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass blocked functionalities and perform unauthorized actions. | 9.0 | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H |
CVE Addressed | Product | Affected Versions | Updated Version(s) | Link to Update |
CVE-2022-26857 | Dell OpenManage Enterprise | Versions before 3.8.4 | 3.8.4 | See Dell KB article 175879: https://www.dell.com/support/kbdoc/en-us/000175879/support-for-openmanage-enterprise |
CVE Addressed | Product | Affected Versions | Updated Version(s) | Link to Update |
CVE-2022-26857 | Dell OpenManage Enterprise | Versions before 3.8.4 | 3.8.4 | See Dell KB article 175879: https://www.dell.com/support/kbdoc/en-us/000175879/support-for-openmanage-enterprise |
Revision | Date | Description |
1.0 | 2022-04-18 | Initial Release |
Dell would like to thank Bartosz Reginiak for reporting this issue.