PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. An unauthenticated non-privileged user could potentially exploit the issue and perform any privileged state-changing actions.
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/000205404 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 03:48
Type | Values Removed | Values Added |
---|---|---|
Summary | PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. An unauthenticated non-privileged user could potentially exploit the issue and perform any privileged state-changing actions. |
Information
Published : 2023-02-11 01:23
Updated : 2024-02-28 19:51
NVD link : CVE-2022-34448
Mitre link : CVE-2022-34448
CVE.ORG link : CVE-2022-34448
JSON object : View
Products Affected
dell
- powerpath_management_appliance
CWE
CWE-352
Cross-Site Request Forgery (CSRF)