Artikelnummer: 000200975
High
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-31233 | Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. | 6.3 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N |
| Third-party Component | CVEs | More information |
| FreeBSD | CVE-2004-0230 | https://nvd.nist.gov/vuln/detail/CVE-2004-0230 |
| OpenSSL | CVE-2022-0778 | https://nvd.nist.gov/vuln/detail/CVE-2022-0778 |
| SLES 12 SP5 | See SUSE Update Advisories | SUSE-SU-2021:1453-1, SUSE-SU-2021:1494-1, SUSE-SU-2021:1957-1, SUSE-SU-2021:4200-1, SUSE-SU-2022:0068-1, SUSE-SU-2022:0081-1, SUSE-SU-2022:0160-1, SUSE-SU-2022:0179-1, SUSE-SU-2022:0323-1, SUSE-SU-2022:0364-1, SUSE-SU-2022:0441-1, SUSE-SU-2022:0495-1, SUSE-SU-2022:0496-1, SUSE-SU-2022:0505-1, SUSE-SU-2022:0561-1, SUSE-SU-2022:0677-1, SUSE-SU-2022:0693-1, SUSE-SU-2022:0698-1, SUSE-SU-2022:0767-1, SUSE-SU-2022:0828-1, SUSE-SU-2022:0842-1, SUSE-SU-2022:0857-1, SUSE-SU-2022:0881-1, SUSE-SU-2022:0908-1, SUSE-SU-2022:0910-1, SUSE-SU-2022:1023-1, SUSE-SU-2022:1140-1, SUSE-SU-2022:1160-1, SUSE-SU-2022:1196-1 |
| Oracle | CVE-2022-0778, CVE-2022-21449, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496, CVE-2022-21434, CVE-2022-21443 |
See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-31233 | Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. | 6.3 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N |
| Third-party Component | CVEs | More information |
| FreeBSD | CVE-2004-0230 | https://nvd.nist.gov/vuln/detail/CVE-2004-0230 |
| OpenSSL | CVE-2022-0778 | https://nvd.nist.gov/vuln/detail/CVE-2022-0778 |
| SLES 12 SP5 | See SUSE Update Advisories | SUSE-SU-2021:1453-1, SUSE-SU-2021:1494-1, SUSE-SU-2021:1957-1, SUSE-SU-2021:4200-1, SUSE-SU-2022:0068-1, SUSE-SU-2022:0081-1, SUSE-SU-2022:0160-1, SUSE-SU-2022:0179-1, SUSE-SU-2022:0323-1, SUSE-SU-2022:0364-1, SUSE-SU-2022:0441-1, SUSE-SU-2022:0495-1, SUSE-SU-2022:0496-1, SUSE-SU-2022:0505-1, SUSE-SU-2022:0561-1, SUSE-SU-2022:0677-1, SUSE-SU-2022:0693-1, SUSE-SU-2022:0698-1, SUSE-SU-2022:0767-1, SUSE-SU-2022:0828-1, SUSE-SU-2022:0842-1, SUSE-SU-2022:0857-1, SUSE-SU-2022:0881-1, SUSE-SU-2022:0908-1, SUSE-SU-2022:0910-1, SUSE-SU-2022:1023-1, SUSE-SU-2022:1140-1, SUSE-SU-2022:1160-1, SUSE-SU-2022:1196-1 |
| Oracle | CVE-2022-0778, CVE-2022-21449, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496, CVE-2022-21434, CVE-2022-21443 |
See NVD (http://nvd.nist.gov/) for individual scores for each CVE |
CVE-2022-31233: Dell Technologies would like to thank Mateusz Dąbrowski for reporting this issue.
| Revision | Date | Description |
| 1.0 | 2022-06-27 | Initial Release |
Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide
PowerMax, PowerMax, PowerMax 2000, PowerMax 2500, PowerMax 8000, PowerMax 8500, PowerMaxOS 5978, Product Security Information, Solutions Enabler, Solutions Enabler Series, Unisphere for PowerMax, VASA Provider
28 jun 2022
1
Dell Security Advisory