Article Number: 000200975
High
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-31233 | Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. | 6.3 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N |
Third-party Component | CVEs | More information |
FreeBSD | CVE-2004-0230 | https://nvd.nist.gov/vuln/detail/CVE-2004-0230 |
OpenSSL | CVE-2022-0778 | https://nvd.nist.gov/vuln/detail/CVE-2022-0778 |
SLES 12 SP5 | See SUSE Update Advisories |
SUSE-SU-2021:1453-1, SUSE-SU-2021:1494-1, SUSE-SU-2021:1957-1, SUSE-SU-2021:4200-1, SUSE-SU-2022:0068-1, SUSE-SU-2022:0081-1, SUSE-SU-2022:0160-1, SUSE-SU-2022:0179-1, SUSE-SU-2022:0323-1, SUSE-SU-2022:0364-1, SUSE-SU-2022:0441-1, SUSE-SU-2022:0495-1, SUSE-SU-2022:0496-1, SUSE-SU-2022:0505-1, SUSE-SU-2022:0561-1, SUSE-SU-2022:0677-1, SUSE-SU-2022:0693-1, SUSE-SU-2022:0698-1, SUSE-SU-2022:0767-1, SUSE-SU-2022:0828-1, SUSE-SU-2022:0842-1, SUSE-SU-2022:0857-1, SUSE-SU-2022:0881-1, SUSE-SU-2022:0908-1, SUSE-SU-2022:0910-1, SUSE-SU-2022:1023-1, SUSE-SU-2022:1140-1, SUSE-SU-2022:1160-1, SUSE-SU-2022:1196-1 |
Oracle | CVE-2022-0778, CVE-2022-21449, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496, CVE-2022-21434, CVE-2022-21443 |
See NVD (http://nvd.nist.gov/ |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-31233 | Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. | 6.3 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N |
Third-party Component | CVEs | More information |
FreeBSD | CVE-2004-0230 | https://nvd.nist.gov/vuln/detail/CVE-2004-0230 |
OpenSSL | CVE-2022-0778 | https://nvd.nist.gov/vuln/detail/CVE-2022-0778 |
SLES 12 SP5 | See SUSE Update Advisories |
SUSE-SU-2021:1453-1, SUSE-SU-2021:1494-1, SUSE-SU-2021:1957-1, SUSE-SU-2021:4200-1, SUSE-SU-2022:0068-1, SUSE-SU-2022:0081-1, SUSE-SU-2022:0160-1, SUSE-SU-2022:0179-1, SUSE-SU-2022:0323-1, SUSE-SU-2022:0364-1, SUSE-SU-2022:0441-1, SUSE-SU-2022:0495-1, SUSE-SU-2022:0496-1, SUSE-SU-2022:0505-1, SUSE-SU-2022:0561-1, SUSE-SU-2022:0677-1, SUSE-SU-2022:0693-1, SUSE-SU-2022:0698-1, SUSE-SU-2022:0767-1, SUSE-SU-2022:0828-1, SUSE-SU-2022:0842-1, SUSE-SU-2022:0857-1, SUSE-SU-2022:0881-1, SUSE-SU-2022:0908-1, SUSE-SU-2022:0910-1, SUSE-SU-2022:1023-1, SUSE-SU-2022:1140-1, SUSE-SU-2022:1160-1, SUSE-SU-2022:1196-1 |
Oracle | CVE-2022-0778, CVE-2022-21449, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496, CVE-2022-21434, CVE-2022-21443 |
See NVD (http://nvd.nist.gov/ |
Product | Affected Versions | Updated Versions | Link to Update |
Unisphere for PowerMax | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere for PowerMax Virtual Appliance | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere 360 | Versions before 9.2.3.6 | 9.2.3.6 | https://www.dell.com/support/home/product-support/product/unisphere-360/drivers |
Solutions Enabler | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
Solutions Enabler Virtual Appliance | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
eVASA Provider Virtual Appliance | Versions before 9.2.3.7 | 9.2.3.7 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
VASA Provider Standalone | Versions before 9.2.3.15 | 9.2.3.15 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
PowerMax OS | 5978 | 5978 | Request OPT 599422 for Hickory SR. |
Product | Affected Versions | Updated Versions | Link to Update |
Unisphere for PowerMax | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere for PowerMax Virtual Appliance | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere 360 | Versions before 9.2.3.6 | 9.2.3.6 | https://www.dell.com/support/home/product-support/product/unisphere-360/drivers |
Solutions Enabler | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
Solutions Enabler Virtual Appliance | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
eVASA Provider Virtual Appliance | Versions before 9.2.3.7 | 9.2.3.7 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
VASA Provider Standalone | Versions before 9.2.3.15 | 9.2.3.15 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
PowerMax OS | 5978 | 5978 | Request OPT 599422 for Hickory SR. |
CVE-2022-31233: Dell Technologies would like to thank Mateusz Dąbrowski for reporting this issue.
Revision | Date | Description |
1.0 | 2022-06-27 | Initial Release |
Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide
PowerMax, PowerMax, PowerMax 2000, PowerMax 2500, PowerMax 8000, PowerMax 8500, PowerMaxOS 5978, Product Security Information, Solutions Enabler, Solutions Enabler Series, Unisphere for PowerMax, VASA Provider
21 Jun 2023
2
Dell Security Advisory