Vulnerabilities (CVE)

Filtered by vendor Dell Subscribe
Filtered by product Powerprotect Cyber Recovery
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-32465 1 Dell 1 Powerprotect Cyber Recovery 2024-11-21 N/A 8.8 HIGH
Dell Power Protect Cyber Recovery, contains an Authentication Bypass vulnerability. An attacker could potentially exploit this vulnerability, leading to unauthorized admin access to the Cyber Recovery application. Exploitation may lead to complete system takeover by an attacker.
CVE-2022-34372 1 Dell 1 Powerprotect Cyber Recovery 2024-11-21 N/A 9.8 CRITICAL
Dell PowerProtect Cyber Recovery versions before 19.11.0.2 contain an authentication bypass vulnerability. A remote unauthenticated attacker may potentially access and interact with the docker registry API leading to an authentication bypass. The attacker may potentially alter the docker images leading to a loss of integrity and confidentiality
CVE-2022-32481 1 Dell 1 Powerprotect Cyber Recovery 2024-11-21 7.2 HIGH 7.8 HIGH
Dell PowerProtect Cyber Recovery, versions prior to 19.11, contain a privilege escalation vulnerability on virtual appliance deployments. A lower-privileged authenticated user can chain docker commands to escalate privileges to root leading to complete system takeover.