High
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-31233 | Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. | 6.3 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N |
Third-party Component | CVEs | More information |
FreeBSD | CVE-2004-0230 | https://nvd.nist.gov/vuln/detail/CVE-2004-0230 |
OpenSSL | CVE-2022-0778 | https://nvd.nist.gov/vuln/detail/CVE-2022-0778 |
SLES 12 SP5 | See SUSE Update Advisories | SUSE-SU-2021:1453-1, SUSE-SU-2021:1494-1, SUSE-SU-2021:1957-1, SUSE-SU-2021:4200-1, SUSE-SU-2022:0068-1, SUSE-SU-2022:0081-1, SUSE-SU-2022:0160-1, SUSE-SU-2022:0179-1, SUSE-SU-2022:0323-1, SUSE-SU-2022:0364-1, SUSE-SU-2022:0441-1, SUSE-SU-2022:0495-1, SUSE-SU-2022:0496-1, SUSE-SU-2022:0505-1, SUSE-SU-2022:0561-1, SUSE-SU-2022:0677-1, SUSE-SU-2022:0693-1, SUSE-SU-2022:0698-1, SUSE-SU-2022:0767-1, SUSE-SU-2022:0828-1, SUSE-SU-2022:0842-1, SUSE-SU-2022:0857-1, SUSE-SU-2022:0881-1, SUSE-SU-2022:0908-1, SUSE-SU-2022:0910-1, SUSE-SU-2022:1023-1, SUSE-SU-2022:1140-1, SUSE-SU-2022:1160-1, SUSE-SU-2022:1196-1 |
Oracle | CVE-2022-0778, CVE-2022-21449, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496, CVE-2022-21434, CVE-2022-21443 |
See NVD (http://nvd.nist.gov/ ) for individual scores for each CVE. |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-31233 | Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. | 6.3 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N |
Third-party Component | CVEs | More information |
FreeBSD | CVE-2004-0230 | https://nvd.nist.gov/vuln/detail/CVE-2004-0230 |
OpenSSL | CVE-2022-0778 | https://nvd.nist.gov/vuln/detail/CVE-2022-0778 |
SLES 12 SP5 | See SUSE Update Advisories | SUSE-SU-2021:1453-1, SUSE-SU-2021:1494-1, SUSE-SU-2021:1957-1, SUSE-SU-2021:4200-1, SUSE-SU-2022:0068-1, SUSE-SU-2022:0081-1, SUSE-SU-2022:0160-1, SUSE-SU-2022:0179-1, SUSE-SU-2022:0323-1, SUSE-SU-2022:0364-1, SUSE-SU-2022:0441-1, SUSE-SU-2022:0495-1, SUSE-SU-2022:0496-1, SUSE-SU-2022:0505-1, SUSE-SU-2022:0561-1, SUSE-SU-2022:0677-1, SUSE-SU-2022:0693-1, SUSE-SU-2022:0698-1, SUSE-SU-2022:0767-1, SUSE-SU-2022:0828-1, SUSE-SU-2022:0842-1, SUSE-SU-2022:0857-1, SUSE-SU-2022:0881-1, SUSE-SU-2022:0908-1, SUSE-SU-2022:0910-1, SUSE-SU-2022:1023-1, SUSE-SU-2022:1140-1, SUSE-SU-2022:1160-1, SUSE-SU-2022:1196-1 |
Oracle | CVE-2022-0778, CVE-2022-21449, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496, CVE-2022-21434, CVE-2022-21443 |
See NVD (http://nvd.nist.gov/ ) for individual scores for each CVE. |
Product | Affected Versions | Updated Versions | Link to Update |
Unisphere for PowerMax | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere for PowerMax Virtual Appliance | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere 360 | Versions before 9.2.3.6 | 9.2.3.6 | https://www.dell.com/support/home/product-support/product/unisphere-360/drivers |
Solutions Enabler | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
Solutions Enabler Virtual Appliance | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
eVASA Provider Virtual Appliance | Versions before 9.2.3.7 | 9.2.3.7 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
VASA Provider Standalone | Versions before 9.2.3.15 | 9.2.3.15 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
PowerMax OS | 5978 | 5978 | Request OPT 599422 for Hickory SR. |
Product | Affected Versions | Updated Versions | Link to Update |
Unisphere for PowerMax | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere for PowerMax Virtual Appliance | Versions before 9.2.3.15 | 9.2.3.15 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/unisphere-powermax/drivers |
Unisphere 360 | Versions before 9.2.3.6 | 9.2.3.6 | https://www.dell.com/support/home/product-support/product/unisphere-360/drivers |
Solutions Enabler | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
Solutions Enabler Virtual Appliance | Versions before 9.2.3.4 | 9.2.3.4 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/solutions-enabler/drivers |
eVASA Provider Virtual Appliance | Versions before 9.2.3.7 | 9.2.3.7 EEM: 9.2.3.19 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
VASA Provider Standalone | Versions before 9.2.3.15 | 9.2.3.15 |
https://www.dell.com/support/home/product-support/product/vasa-provider/drivers |
PowerMax OS | 5978 | 5978 | Request OPT 599422 for Hickory SR. |
Revision | Date | Description |
1.0 | 2022-06-27 | Initial Release |
CVE-2022-31233: Dell Technologies would like to thank Mateusz Dąbrowski for reporting this issue.