DSA-2022-194: Dell NetWorker Security Update for Insufficient Privileges Vulnerability
Summary: Dell NetWorker remediation is available for insufficient privileges vulnerability that may be exploited by malicious users to compromise the NetWorker Management Console component.
This article applies to
This article does not apply to
Impact
Medium
Details
| Propriety Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022- 34368 | Dell NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x, and 19.7.0.0 contains an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non administrative users may potentially exploit this vulnerability and gain access to restricted resources. | 6.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L  |
| Propriety Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022- 34368 | Dell NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x, and 19.7.0.0 contains an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non administrative users may potentially exploit this vulnerability and gain access to restricted resources. | 6.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L |
Affected Products & Remediation
| Product | Affected Versions | Updated Version | Link to Update |
| Dell NetWorker | 19.2.1.x | 19.6.1.2 19.7.0.1 |
https://www.dell.com/support/home/product-support/product/networker/drivers |
| 19.3.x | |||
| 19.4.x | |||
| 19.5.x | |||
| 19.6.x | |||
| 19.7.0.0 |
| Product | Affected Versions | Updated Version | Link to Update |
| Dell NetWorker | 19.2.1.x | 19.6.1.2 19.7.0.1 |
https://www.dell.com/support/home/product-support/product/networker/drivers |
| 19.3.x | |||
| 19.4.x | |||
| 19.5.x | |||
| 19.6.x | |||
| 19.7.0.0 |
Revision History
| Revision | Date | Description |
| 1.0 | 2022-07-21 | Initial Release |
| 1.1 | 2022-10-03 | Minor |