CVE-2022-34363
published 2026-05-22CVE-2022-34363: Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp
PriorityP344high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
EPSS
0.25%
15.9th percentile
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | unisphere_360 | < 9.2.3.12 | 9.2.3.12 |
| dell | unisphere_for_powermax | < 10.0.0.5 EEM: 10.0.0.968 | 10.0.0.5 EEM: 10.0.0.968 |
| dell | unisphere_for_powermax | < 9.2.3.22 EEM: 9.2.4.26 | 9.2.3.22 EEM: 9.2.4.26 |
| dell | unisphere_for_powermax_virtual_appliance | < 9.2.3.22 EEM: 9.2.4.26 | 9.2.3.22 EEM: 9.2.4.26 |
| dell | unisphere_for_powermax_virtual_appliance | < 10.0.0.2 | 10.0.0.2 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
cvelistv5v3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-g6ph-2vxq-m462: Dell Unisphere for PowerMax vApp version prior to 10
ghsa_unreviewed·2026-05-26
CVE-2022-34363 [MEDIUM] CWE-285 GHSA-g6ph-2vxq-m462: Dell Unisphere for PowerMax vApp version prior to 10
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp
CVEList
CVE-2022-34363: Dell Unisphere for PowerMax vApp version prior to 10
cvelistv5·2026-05-22·CVSS 6.5
CVE-2022-34363 [MEDIUM] CWE-285 CVE-2022-34363: Dell Unisphere for PowerMax vApp version prior to 10
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp
VulDB
Dell Unisphere 360 prior 10.0.0.2 VMAX Application improper authorization
vuldb·2026-05-22
CVE-2022-34363 [CRITICAL] Dell Unisphere 360 prior 10.0.0.2 VMAX Application improper authorization
A vulnerability categorized as critical has been discovered in Dell Unisphere for PowerMax, Unisphere for PowerMax Virtual Appliance and Unisphere 360. This issue affects some unknown processing of the component VMAX Application. The manipulation results in improper authorization.
This vulnerability is identified as CVE-2022-34363. The attack can be executed remotely. There is not any exploit available.
It is advisable to upgrade the affected component.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-05-22
Published