CVE-2022-31232

SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access and perform actions on the affected system.
Configurations

Configuration 1 (hide)

cpe:2.3:a:dell:smartfabric_storage_software:1.0.0:*:*:*:*:*:*:*

History

21 Nov 2024, 07:04

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 9.8
v2 : unknown
v3 : 8.6
References () https://www.dell.com/support/kbdoc/en-us/000201667/dsa-2022-156-dell-emc-smartfabric-storage-software-security-update-for-multiple-component-vulnerabilities - Vendor Advisory () https://www.dell.com/support/kbdoc/en-us/000201667/dsa-2022-156-dell-emc-smartfabric-storage-software-security-update-for-multiple-component-vulnerabilities - Vendor Advisory

Information

Published : 2022-08-30 21:15

Updated : 2024-11-21 07:04


NVD link : CVE-2022-31232

Mitre link : CVE-2022-31232

CVE.ORG link : CVE-2022-31232


JSON object : View

Products Affected

dell

  • smartfabric_storage_software
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')