CVE-2022-22564

CWE-327 — Broken Cryptographic Algorithm3 documents3 sources

Severity

5.9MEDIUM

EPSS

0.1%

top 64.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dell Unity Dell EMC Unity Operating Environment Dell EMC Unity XT Operating Environment +1 more

Timeline

PublishedFeb 14

Description

Dell EMC Unity versions before 5.2.0.0.5.173 , use(es) broken cryptographic algorithm. A remote unauthenticated attacker could potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5dell/unity< 5.2.0.0.5.173

▶NVDdell/emc_unity_operating_environment< 5.2.0.0.5.173

▶NVDdell/emc_unity_xt_operating_environment< 5.2.0.0.5.173

▶NVDdell/emc_unityvsa_operating_environment< 5.2.0.0.5.173

🔴Vulnerability Details

GHSA

GHSA-cr87-3776-x62w: Dell EMC Unity versions before 5↗2023-02-14

▶

CVEList

CVE-2022-22564: Dell EMC Unity versions before 5↗2023-02-14

▶